Application Security Alert: Hackers Exploit Critical RCE Vulnerability in vBulletin

 

A sudden and critical publicly disclosed vulnerability in popular software periodically sends organizations around the world scrambling.  Recently, a very popular web-forum called vBulletin was found to have a critical vulnerability, putting user data at risk. This resulted in many companies having to choose to either take their forums offline or be at a severe risk of attack. 

In this case, specific versions of vBulletin (versions 5.0.0 – 5.5.4) had an especially worrisome bug.  Here is the problematic PHP code:

vBulletin Vulnerable Code

Read the full story by

Tags:

RELATED READS
Watch and learn - why video learning works Solving Cognitive Overload with Point of Need Tools
We are updating our Privacy Policy, so please make sure you take a minute to review it. As of May 25, 2018 your continued use of our services will be subject to this new Privacy Policy.
Review Privacy Policy OK