|
vBulletin Unsafe?
Code:
I doubt Jelsoft is hiring, and I dont know if I want to fix something as broken as vbulletin, its DB performance is horendous, its code implmentation is *cringe*, and I doubt they would like a formal AGILE method, altough I do hear they are adopting AGILE (a microsoft originating project mangement style that rocks) |
Vbulletin is one of the most secure softwares on the net.
|
He gave me this example:
Code:
Ok here is a quick one. |
Man He is a liar man that what i can say what ur msn????
pm me ur msn i help u talk to that guy |
Prolly not worth it. Honestly, I can tell he's probably lying. vBulletin couldn't be that unsafe.
|
reverse engineering you to give up your password to someone who could supposedly "hack" you in order to protect you is usually how someone who talks a lot of game obtains 99.9% of their passwords.
|
He's a noob that found a list of the cross site scripting exploits on old versions of vB, pretty much if you're up to date his rants about insecurity are worthless.
The only thing he's somewhat right about is the cookie thing. If you log into your board on a public wireless network, anyone can sniff out your cookie without any problem. Once you that cookie is stolen they can do a lot of stuff without authorization until you change your password. |
And as you see, if a exploit is find, the developers are fixing it very fast => 3.8.1 pl 1
|
ya lor vb rox
|
Code:
Actually in the 4th post i believe. he is correct. You can Use an XSS flaw in some 3.6X versions of vBulletin |
| All times are GMT. The time now is 01:11 PM. |
Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.
| X vBulletin 3.8.12 by vBS Debug Information | |
|---|---|
|
|
 More Information |
|
|
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|