The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#71
|
|||
|
|||
hi,
hmmmm people give valter a break.Ok i wasn't using that mod with a security hole and i can undestand the frusteration and anger you feel when your site is hacked but this coder is human and humans regardless of there amount of knowledge do make mistakes the one (and only for that matter) 100% secure code is the one a human never wrote i can't stand the bashing at the mod author stop it to me he is a respected coder i mean i don't know him but it's just plain bad to going to critize all of his work just because of one bad one |
#72
|
|||
|
|||
Quote:
*you need to sign up to view their forums* I am not spreading spam. But the vb team needs to verify this. This is the latest exploit that is going around. Take a look at the date on this thread & post. It is very recent...like I said, I am no hacker or exploiter nor have i tested it out. But it is something to take a look at...I think there is some credibility to this one. http://www.hackforums.net/showthread...303176&page=11 http://www.hackforums.net/showthread...1230802&page=2 |
#73
|
||||
|
||||
This thread is actually about the recent exploit from the AFR mod. If you have general vb exploits, I suggest to send a PM to an administrator.
|
#74
|
|||
|
|||
Yea sorry. I did.
|
#75
|
||||
|
||||
FUD is not spam, FUD is fear uncertainty and doubt.
Please send the full exploit information to sales@vbulletin.com |
#76
|
||||
|
||||
So its not any new exploit as such.
|
#77
|
|||
|
|||
How do you go about tracking down the add-on that was the problem? I got rehacked tonight by Team Adimus and had also upgraded my advanced forum rules mod earlier this month after the first time.
|
#78
|
||||
|
||||
AFR was updated again a few days ago, did you install that ?
|
#79
|
|||
|
|||
No it wasn't...I realized that after posting here and back tracking to find the cause..found snoopytas post about the cookie vulernability. Its updated now though. Hopefully this time I can put this behind me...
--------------- Added [DATE]1306166227[/DATE] at [TIME]1306166227[/TIME] --------------- Also found that they not only added vba.php to the includes folder, they also added it to includes/xml/includes as well as a file called include_bbs.php to both of those directories as well. |
Thread Tools | |
Display Modes | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|