Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Windscribe
Login or Register to Hide ads and Accessing all features on the forum
Thread Rating:
  • 1 Vote(s) - 2 Average
  • 1
  • 2
  • 3
  • 4
  • 5
News vBulletin releases patch update for new RCE and SQLi vulnerabilities
#1
Exclamation 
In The Name Of Allah
Al-Salam Alekum
[Image: ?u=https%3A%2F%2Ftse2.mm.bing.net%2Fth%3...%3DApi&f=1]
Well guys, this new is somewhat over and it comes back to 8th Oct 2019 but as it is important for vBulletin forum users. I'm going to make a thread about it... Sadly forum administrators sometimes Don't care or they forget to update forums software as this lead to a breach nor admins nor users agree with it.
vBulletin is a widely used forum software by over 100k websites, include Fortune 500 and Alexa Top 1 million companies websites and forums.
The exploit had been discovered by application security researcher Egidio Roman.. Here is the CVE and exploit detail:
2-SQL Injection: CVE-2019-17271
It is recommended to update the software as fast as possible to prevent any leak of Users Data as these vulns are powerful. Also you can prevent RCE by disabling "Save Avatars as Files" options till updating your forum.
Thank you
Wa Salam Alekum
Rs
* Thankful to Allah *
Kurdy
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
Wink News Mozilla Firefox 75 Is Out With Fixes For RCE vulnerabilities Mr.Kurd 0 434 04-13-2020, 01:13 PM
Last Post: Mr.Kurd
Exclamation News Hackers Exploiting 2 Unpatched Windows 0-Day Vulnerabilities in Wide – Microsoft Warn Mr.Kurd 0 652 03-24-2020, 07:56 AM
Last Post: Mr.Kurd
Rainbow News Researchers Find Security Vulnerabilities In Some of The Top Password Managers Mr.Kurd 0 327 03-23-2020, 08:02 AM
Last Post: Mr.Kurd
Star News Trend Micro Patched Zero-Day Vulnerabilities Under Active Exploit Mr.Kurd 0 310 03-23-2020, 07:54 AM
Last Post: Mr.Kurd
Thumbs Up News Microsoft pauses Edge releases amid coronavirus outbreak Mr.Kurd 0 338 03-22-2020, 08:20 AM
Last Post: Mr.Kurd
Exclamation News Vulnerabilities In Top Free Android VPN Apps Risk Over 120 Million Users Mr.Kurd 0 363 03-02-2020, 08:36 PM
Last Post: Mr.Kurd
Exclamation News Mozilla Firefox 73 Browser Update Fixes High-Severity RCE Bugs Mr.Kurd 0 436 02-12-2020, 09:10 PM
Last Post: Mr.Kurd
Heart News Critical RCE & Spoofing Vulnerabilities in Microsoft Azure Cloud Let Hackers Compromi Mr.Kurd 0 465 01-31-2020, 07:32 AM
Last Post: Mr.Kurd
  News Urgent !! Windows User Urged to Patch A Critical Crypto Vulnerability on Windows 10 Mr.Kurd 1 430 01-15-2020, 11:38 AM
Last Post: poolclosed
  News Stop everything. Update Firefox now Mr.Kurd 1 499 01-09-2020, 05:06 PM
Last Post: Mr.Kurd



Users browsing this thread: 1 Guest(s)