No announcement yet.

vBulletin 3.8.4 has been hacked !!!

  • Filter
  • Time
  • Show
Clear All
new posts

  • #16
    Originally posted by Endlesskiss View Post
    I've been using 3.8.4 for a while and got defaced once, I suggest you to read more info about the 'Gumblar' virus (made in China, but works well), and run Avast! on your server, it's free and it works on Linux, and most likely it will find some stuff like c99.php (a Shell) on your server, which allows hackers to edit files on your server.

    Basically, I've tried MANY things and none of them actually worked (No XSS nor SQLi).
    In that case the 'Gumblar' virus has nothing to do with any security issues in vb but it preys on week pc system to steal ftp infos.


    • #17
      they upload as image through custom avators signatures
      after uplaod it changed to .php file

      I suggest pls check these hacking website like custome avators and signatures group icons
      there may be shell access file in made with .php
      so that file give full server access info

      My website hacked three times using same method
      site hacked with latest update vb4 and server also latest update

      actually third time I scanned all my files my anti-virus found these files

      Only solutions is not allow file upload
      via server level not allowed
      by vbulletin level if we restricted extension they upload what they want

      This is my experienced


      widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.