No announcement yet.

Security Patch : vBulletin 4.2.2 - PL3

  • Filter
  • Time
  • Show
Clear All
new posts

  • Security Patch : vBulletin 4.2.2 - PL3

    A security issue has been discovered that affects the vBulletin 4 Publishing Suite. We have released a patch to correct this issue for vBulletin 4.2.2

    The issue may allow attackers to perform SQL Injection attacks against the CMS portion of the Publishing Suite.
    It is recommended that all users update as soon as possible. If you're using a version of vBulletin 4 older than 4.2.2, it is recommended that you upgrade to that version as soon as possible.

    You can download the build for your version here:
    and the patch can be found here:

    To install the patch, download it then upload all included files found within the zip file. Make sure to overwrite the existing files on your server.

    If you're using a version prior to 4.2.2, then you should follow standard upgrade procedures.

    Builds available:
    vBulletin 4.2.2 Patch Level 3
    Baby, I was born this way

  • #2
    For anyone who is running 4.2.3 (Suite), the fix will be in Beta 4.

    Until that is available, you can download the 4.2.2 PL3 suite patch files, and just upload the "packages" folder.
    Baby, I was born this way


    widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.