As a compelte newb admin to my site I wanted to make sure I was uploading this new security patch correctly. I rec'd the notice and followed the link - http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/4024547-security-exploit-patched-in-versions-3-5-3-6-3-7-3-8-4-x-5-x-of-vbulletin

Installing the Patch
Please install the patch for your version of vBulletin immediately.
Upgrade PHP to the minimum version or install the JSON PECL, if necessary.
Download the patch from https://members.vbulletin.com/patches.php.
Extract the vBulletin patches files from the Zip file.
Upload the patch files to your server, overwriting the old files.
As with all security related releases, we recommend all affected customers patch/upgrade as soon as possible.

My question pertains to items #3 and #4. After downloading and un-zipping the file I notice that there are (6) .php type files, (4) that are in the "includes" folder. Do I upload all (6) files individually? or do I only upload the (4) files in the "includes" folder? or do I upload the folder as a whole?

Thanks in advance,
MLF

Upload all files in the folder hierarchy to your forum's base directory.

To clarify the files listed in the zip that are not in a folder, place in your forum's base directory. As an example some people use "\forum\".

The files in the 'includes' folder are uploaded to your "\forum\includes\" folder. There will be only one "includes" folder off your base directory.

I hope that helps :)

so when I open my FTP and connect to the server, if I right click on the .php files it gives me the option of over-writing the existing file ... I select yes?

so when I open my FTP and connect to the server, if I right click on the .php files it gives me the option of over-writing the existing file ... I select yes?

Yes, and that is a good indication that you are copying the file to the right place.

To save myself time, I do not extract it on my computer, I just upload the whole zip file via cPanel upload file into temp, then extract them into /forums directory and done!

Although, I oversee a large number of servers, I try not to give advice in this area due to liability. I just try to answer their particular question as another enthusiast. I believe they should do no more then they feel comfortable in doing, the blame, if any, then lies with them. Of course I have empathy for the plight, as we have all been there. :)

You need download zip file and extract to your host, overwrite old files, don't need upgrade

Yes, and that is a good indication that you are copying the file to the right place.

excellent ... did that and that is exactly what happened


Thanks for the help folks :)

Your welcome. :)