The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#1
|
|||
|
|||
Bogus subscriptionss.php inserted into /forums directory
VB Maintenance detected that there is a file that is not part of VBulletin
/forums/subscriptionss.php I don't know what it does (now I can not have a look into it) but when I redirected to it, the screen I got is attached. How did they insert it? Anything I can do to prevent it? VB 4.2.2 Patch 1 Vanilla, not a single plugin No install directory Turned my site off until I get on the machine where I can remove the file. |
#2
|
||||
|
||||
There are other attack vectors such as via insecure hosting
Change all of your passwords ASAP (root, hosting account etc.) |
#3
|
||||
|
||||
Please read the following two blog posts:
http://www.vbulletin.com/forum/blogs...ve-been-hacked http://www.vbulletin.com/forum/blogs...vbulletin-site Also please see these recent security announcements: vBulletin 4.1.x-4.2.x & All versions of vBulletin 5: http://www.vbulletin.com/forum/forum...-1-vbulletin-5 vBulletin 5.0.x patch released, for a different security issue: http://www.vbulletin.com/forum/forum...d-all-versions |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|