vBulletin Announcements

A security issue has been reported to us that affects vBulletin 3. We have released security patches for the versions vBulletin 3.8.7 and 3.8.8 to account for this vulnerability. The issue may allow attackers to perform CSRF exploits via the Moderator Control Panel. It is recommended that all users update as soon as possible. If you're using a version of vBulletin 3 older than 3.8.7, it is recommended that you upgrade to that version as soon as possible. You can download the patch for your version here: http://members.vbulletin.com/patches.php To install the patch, download the appropriate files for your version of vBulletin 3 then upload all files found within the zip file. Make sure to overwrite the existing files on your server...

For vBulletin 5.x.x This security update will help you prevent attacks through the Mobile API. For vBulletin 5.1.4 only, the critical bug fixes address issues with the vBulletin 5 upgrade system, and two separate issues with site builder. The bug fix issues are as follows: VBV-13932 Some Javascript was breaking the ability for site builder to initialize. VBV-13926 The “Create New Page” feature does not set a default layout VBV-13960 Customers Upgrading from earlier versions of vBulletin may have a broken settings page. You can download the build for your version here: https://members.vbulletin.com/ and the patch can be found here: https://members.vbulletin.com/patches.php To install the patch, download it then upload all included...

A security issue has been discovered that affects the vBulletin 4 Publishing Suite. We have released a patch to correct this issue for vBulletin 4.2.2 The issue may allow attackers to perform SQL Injection attacks against the CMS portion of the Publishing Suite. It is recommended that all users update as soon as possible. If you're using a version of vBulletin 4 older than 4.2.2, it is recommended that you upgrade to that version as soon as possible. You can download the build for your version here: https://members.vbulletin.com/ and the patch can be found here: https://members.vbulletin.com/patches.php To install the patch, download it then upload all included files found within the zip file. Make sure to overwrite the existing...

We're proud to announce the release of vBulletin 5.1.5 Alpha X. This is a maintenance release focused on resolving issues within the software. All together over 115 issues have been resolved in vBulletin 5.1.5. In addition to fixing outstanding issues, we've added a few new features and continue to update existing features. PHP Minimum Version Due to changes in required third-party libraries, the minimum required version of vBulletin 5.1.5 and higher will be PHP 5.4.0. Also at this time, PHP 5.3.X has reached end of life and will no longer be updated. It is recommended to upgrade your servers to 5.4.0. Facebook Connect Updates Facebook Connect in vBulletin 5.1.5 has been reworked and updated to the latest version of the Facebook API...

We're proud to announce the release of vBulletin 5.1.4. This is a maintenance release focused on resolving issues within the software. All together over 140 issues have been resolved in vBulletin 5.1.4. In addition to fixing outstanding issues, we've added a few features and reworked Site Builder for better stability. Site Builder Refactor Site Builder has been refactored to edit the way it loads components for editing pages. Previously, you could break your page by adding improper HTML to the Static HTML or Ad modules placed on a page. In order to resolve this we had to make some changes to Site Builder. These changes include loading the Site Builder components on demand instead of every page load for administrators. It also involves...

A security issue has been reported to us that affects vBulletin 4. We have released new builds of vBulletin 4.2.2 and 4.2.3 to account for this vulnerability. The issue may allow attackers to access sensitive data via the mobile API. It is recommended that all users update as soon as possible. If you're using a version of vBulletin 4 older than 4.2.2, it is recommended that you upgrade to that version as soon as possible. You can download the build for your version here: http://members.vbulletin.com/ Special thanks to NytroRST for reporting this issue. To install the new build, download your version of vBulletin 4 (4.2.2 or 4.2.3) then upload all files found within the zip file except the /install/ directory. Make sure to overwrite...

A series of security patches have been released for all versions of vBulletin 5 Connect. This includes vBulletin 5.0.0 through 5.1.2. This patch is integrated into vBulletin 5.1.3 Beta 2 as well. The patch is to prevent the accidental exposure of unintended information. We recommend that you upgrade to this latest security patch as soon as possible. If you are not using vBulletin 5.1.2, we recommend that you do a complete upgrade to this version. Please note, all vBulletin cloud sites have already been patched. You can download the patch here: https://members.vbulletin.com/patches.php To install the patch, simply upload the files included in the Patch and overwrite the existing files on your server. There are no scripts that need to...