What's new
กรุณาปิด โปรแกรมบล๊อกโฆษณา เพราะเราอยู่ได้ด้วยโฆษณาที่ท่านเห็น
Please close the adblock program. Because we can live with the ads you see


thxf.org

Annon vBulletin Security Patch for vB 4.1.4 and vB 3.8.7 : Low Risk "phishing" patch

Announcement and Instructions:

Earlier last month the vBulletin team was notified of an indirect, low-risk security exploit vector that could potentially be used to maliciously trick users into providing account sensitive information to non-authorized parties. Please see the original notice for more information:https://www.vbulletin.com/forum/show...hishing-Vector

While the security risk is low, we have taken the report very seriously and incorporated additional security functionality into the vBulletin product to safeguard your site and prevent any attempts at malicious phishing activity.

After successful installation of the patch, no configuration or activation will be required and the new security check will work automatically to prevent malicious redirection.

Patched Versions:
  • vBulletin 3.8.7 (download from members area)
  • vBulletin 3.8.7 with Mobile API (download from members area)
  • vBulletin 4.1.4 (download from members area)
Important Patch Installation Notes:
  • Please check and make sure you are downloading and installing the correct patch.
  • Important; that if you are using vBulletin 3.8.7 with Mobile API product you need the special “vBulletin 3.8.7 MAPI Patch”.
  • This patch requires you to execute the upgrade process in order to install the additional security features.
  • As always, It is recommended to have a full database backup of your site prior to upgrading.
Patch Installation Instructions:
  • vBulletin 3.8.7 (including Mobile) and vBulletin 4.1.4
Please note (for Advanced Users Only): These settings and configuration will not affect most vBulletin users. If you have created a custom domain configuration, you can define a domain “whitelist” in your Admin Control Panel. Go to AdminCP -> Settings -> Options -> Site Name / URL / Contact Details -> “Redirect Domain Whitelist”.


More...
 
thxf.org
Annon  vBulletin 4.1.4 now available for download
thxf.org
Annon  vBulletin version 4.1.5 Beta 1 - available for download
Click to expand...
You must log in or register to reply here.


Similar threads

thxf.org
  • Article Article
news Security Patch Released for vBulletin 6.X and 5.7.5
The API functionality of vBulletin 6 and 5.7.5 has been found to have security issues. We have created fixes for these issues. To maintain site security, you should apply this patch as soon as...
Replies
0
Views
137
thxf.org 
thxf.org
thxf.org
  • Article Article
news Security Patch for vBulletin 5.7.5 Released
This patch solves three issues: how the system detects PHAR files, a potential security issue in BBCode rendering, and a problem with inviting members to a Blog. Self-hosted customers should apply...
Replies
0
Views
423
thxf.org 
thxf.org
thxf.org
  • Article Article
news Security Patch Released for vBulletin 6.0.0 and 5.7.5
A security issue has been found in the AdminCP log in functionality of vBulletin 6.0.0 and 5.7.5. This security patch addresses the concerns outlined in CVE-2023-39777. We have created a fix for...
Replies
0
Views
279
thxf.org 
thxf.org
thxf.org
  • Article Article
news Security Patch Released for vBulletin 5.3.2, 5.3.3, and 5.3.4
Two potential issues have been identified in vBulletin 5.3.2 and higher. The first affects the template rendering functionality and could lead to arbitrary file deletion. The second allows the...
Replies
0
Views
1K
thxf.org 
thxf.org
thxf.org
  • Article Article
news vBulletin Security Patch for 3.8.7, 4.2.2 and 5.X
A security issue has been found that affects all versions of vBulletin including 3.x, 4.x and 5.x. We have released security patches to account for this vulnerability. This includes patches for...
Replies
0
Views
1K
thxf.org 
thxf.org

กรุณาปิด โปรแกรมบล๊อกโฆษณา เพราะเราอยู่ได้ด้วยโฆษณาที่ท่านเห็น
Please close the adblock program. Because we can live with the ads you see
Back
Top Bottom