vBulletin 3.0.4 was released a few hours ago. Among the many bug fixes, it also patches an SQL injection bug and resolves problems related to PHP's serialization exploits. Therefore, Jelsoft recommends that all customers upgrade to it as soon as possible.

You can read more at http://www.vbulletin.com/forum/showthread.php?t=124876 . That thread also includes a patched init.php, in case you don't want to upgrade but still need to patch the SQL injection bug.

You can download vBulletin itself from the Member's Area: http://www.vbulletin.com/members/ .

Please discuss this release (if you desire) in vB's official discussion thread: http://www.vbulletin.com/forum/showthread.php?t=124876

what happen to the site?
it was down for like a few hours..

Obviously it can't cope with a new release.

no idea, the server was partially down

i could ftp but not access any of the four sites, nor sending mails

yeah i kept getting a connection refused error message from firefox when i tried to connect:(

Ridiculous :p The day after my member access expires

Few questions.... if i upgrade does the vb3 hack still works? am i gon have to reinstall everything??
:disappointed:

well, you have to rehack the files :)

here you can find out how to do that fast an efficient :)