vBulletin – WindowsTechs.com

Gitpaste-12 Worm Widens Set of Exploits in New Attacks

Posted on December 15, 2020 by Lindsey O'Donnell

The worm returned in recent attacks against web applications, IP cameras and routers. Continue reading Gitpaste-12 Worm Widens Set of Exploits in New Attacks→

Researcher Publishes Bypass for Patch for vBulletin 0-Day Flaw

Posted on August 11, 2020 by Elizabeth Montalbano

Three separate proof-of-concepts on Bash, Python and Ruby posted to outsmart fix issued last year to remedy pre-auth RCE bug. Continue reading Researcher Publishes Bypass for Patch for vBulletin 0-Day Flaw→

Exploits for vBulletin zero-day released, attacks are ongoing

Posted on August 11, 2020 by Zeljka Zorz

The fix for CVE-2019-16759, a remote code execution vulnerability in vBulletin that was patched in September 2019, is incomplete, security researcher Amir Etemadieh has discovered. The discovery and his publishing of PoC and full exploits spurred attac… Continue reading Exploits for vBulletin zero-day released, attacks are ongoing→

vBulletin fixes critical vulnerability, patch immediately!

Posted on May 11, 2020 by Zeljka Zorz

If you’re using vBulletin to power your online forum(s), you should implement the newest security patches offered by the developers as soon as possible. The patches fix CVE-2020-12720, a vulnerability affecting versions 5.5.6, 5.6.0 and 5.6.1 wit… Continue reading vBulletin fixes critical vulnerability, patch immediately!→

Hackers Breach ZoneAlarm’s Forum Site — Outdated vBulletin to Blame

Posted on November 11, 2019 by Swati Khandelwal

ZoneAlarm, an internet security software company owned by Israeli cybersecurity firm Check Point Technologies, has suffered a data breach exposing data of its discussion forum users, the company confirmed The Hacker News.

With nearly 100 million downl… Continue reading Hackers Breach ZoneAlarm’s Forum Site — Outdated vBulletin to Blame→

Hacker wants $300 for 250,000 records stolen from sex worker site

Posted on October 14, 2019 by Lisa Vaas

In spite of prostitution being legal in the Netherlands, this could lead to the same type of blackmail attempts/suicide from Ashley Madison. Continue reading Hacker wants $300 for 250,000 records stolen from sex worker site→

vBulletin Flaw Exploited in Dutch Sex-Work Forum Breach

Posted on October 10, 2019 by Lindsey O'Donnell

A hacker is selling the email addresses of 250,000 users of a Dutch sex-work forum — data that researchers say could be used for blackmail. Continue reading vBulletin Flaw Exploited in Dutch Sex-Work Forum Breach→

vBulletin Releases Patch Update for New RCE and SQLi Vulnerabilities

Posted on October 8, 2019 by Wang Wei

After releasing a patch for a critical zero-day remote code execution vulnerability late last month, vBulletin has recently published a new security patch update that addresses 3 more high-severity vulnerabilities in its forum software.

If left unpatc… Continue reading vBulletin Releases Patch Update for New RCE and SQLi Vulnerabilities→

Comodo Forums Hack Exposes 245,000 Users’ Data — Recent vBulletin 0-day Used

Posted on October 1, 2019 by Wang Wei

If you have an account with the Comodo discussion board and support forums, also known as ITarian Forum, you should change your password immediately.

Cybersecurity company Comodo has become one of the major victims of a recently disclosed vBulletin 0-… Continue reading Comodo Forums Hack Exposes 245,000 Users’ Data — Recent vBulletin 0-day Used→

Rash of Exploits Targets Critical vBulletin RCE Bug

Posted on September 26, 2019 by Tara Seals

After someone dropped a zero-day exploit on Securelist this week, the platform rushed out a fix — time to apply it. Continue reading Rash of Exploits Targets Critical vBulletin RCE Bug→