vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB4 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=251)
-   -   Serious problem (https://vborg.vbsupport.ru/showthread.php?t=244722)

gabrielambrogio 06-16-2010 11:51 AM
Serious problem
 
Hi, in my vbulletin 4.0.3 forum an unknown guy managed to rank only to fit into that group administrator, why this vulnerability on vBulletin 4? anyone know answer? Thank you.

ChopSuey 06-16-2010 01:25 PM
Have you removed the user from the Admin usergroup?

Ask all your staff if they have changed his usergroup.

Also check the logs.

Lynne 06-16-2010 01:32 PM
I don't think this is a vulnerability in vB4 or I would have heard of it before now. Check your access_logs and your admincp logs and talk to your host about security issues if needed.

gabrielambrogio 06-16-2010 04:22 PM
Quote:
Originally Posted by Lynne (Post 2054511)
non credo che si tratta di una vulnerabilit? in VB4 o avrei sentito parlare prima d'ora. Controlla la tua e la vostra access_logs admincp registri e contatta il tuo host su questioni di sicurezza se necessario.
The server that hosts the forum anyway so a firewall is not a vulnerability in vbulletin cms 4?

Lynne 06-16-2010 07:39 PM
Sorry, I don't understand what you are saying. The hacker got in somehow. If it was through the code, it would show in your access_logs. If your files were altered, then they got in through the server somehow.


All times are GMT. The time now is 02:44 PM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01431 seconds
  • Memory Usage 1,712KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (5)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete