Vulnerability Disclosure

Vulnerability in Vbulletin 3.8.6

If you are running Vbulletin 3.8.6 (the latest 3.8.x version), make sure to remove the faq.php as soon as possible. A vulnerability has been found that allows anyone to retrieve the database credentials from there.

The VBSEO team was quick to react and sent the following note to their clients a little while ago:

Hello valued vBSEO customer,
It has come to our attention that a vulnerability on vBulletin 3.8.6
has been discovered. The exploit allows a malicious user to retrieve a
forum’s database credentials via the faq.php script.
If you are running vBulletin 3.8.6, we strongly recommend that you
remove the faq.php script and change your mysql database details as a
precaution.
You can find faq.php in your vBulletin installation directory:
*/vbroot/faq.php

Update: Patch available here.

It seems that a patch is coming very soon too. Some discussion about this issue here. Thanks to Marcus Maciel for the heads up.

David Dede

David is a Security Researcher at Sucuri. He spends most of his time dissecting vulnerabilities and security issues. You won't find him on Twitter because he is paranoid about privacy.

Related Tags

Hacked Websites

2 comments

Comments are closed.

Critical Magento Shoplift Vulnerability (SUPEE-5344) – Patch Immediately!

Daniel Cid
April 18, 2015

The Magento team released a critical security patch (SUPEE-5344) to address a remote command execution (RCE) vulnerability back in February. It’s been more than two months…

Read the Post

Multi-Vector Attack in Server Logs

John Castro
March 25, 2019

We recently noticed an increase on suspicious requests in our logs which reveal a planned attack against the Social Warfare plugin. Bad actors added this…

Read the Post

Vulnerability Disclosure

SQL Injection in Magento Core

Marc-Alexandre Montpas
March 28, 2019

Magento has released a new security update fixing multiple types of vulnerabilities including Cross-Site Request Forgery, Cross-Site Scripting, SQL Injection, and Remote Code Execution. To…

Read the Post

Outdated Duplicator Plugin RCE Abused

Peter Gramantik
September 14, 2018

We’re seeing an increase in the number of cases where attackers are disabling WordPress sites by removing or rewriting its wp-config.php file. These cases are all linked…

Read the Post

Zero-Day Stored XSS in Social Warfare

Marc-Alexandre Montpas
March 21, 2019

A zero-day vulnerability has just appeared in the WordPress plugin world, affecting over 70,000 sites using the Social Warfare plugin. The plugin is vulnerable to…

Read the Post

WordPress Vulnerabilities & Patch Round-up — May 2022

Antony Garand
May 31, 2022

Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…

Read the Post

WordPress Vulnerability and Patch Roundup March 2024

WordPress Vulnerability & Patch Roundup March 2024

Sucuri Malware Research Team
March 25, 2024

Read the Post

Critical Vulnerabilities in All in One SEO Plugin Affects Millions of WordPress Websites

Ben Martin
December 21, 2021

Security Risk: High Exploitation Level: Easy CVSS Score: 9.9 / 7.7 Vulnerability: Privilege Escalation, SQL Injection Patched Version: 4.1.5.3 Last week, security researcher at Automattic…

Read the Post

New Malware Campaign Found Exploiting Stored XSS in Popup Builder < 4.2.3

Puja Srivastava
March 7, 2024

In January, my colleague reported about a new Balada Injector campaign found exploiting a recent vulnerability in the widely-used Popup Builder WordPress plugin which was…

Read the Post

September 2023 Theme Plugin Patch WordPress Vulnerability Roundup

WordPress Vulnerability & Patch Roundup September 2023

Cesar Anjos
September 28, 2023

Read the Post

Related Tags

2 comments

Related Categories

You May Also Like