vBulletin Security Flaw Makes BBC News

The Hat Tipper said:
Same thing to me ๐Ÿ˜›

Anyway, you can argue about a link on a post here, I am goin out to enjoy my night, Thanks for playing ๐Ÿ˜€
Click to expand...

I never knew going into a different room to watch a film was going out to enjoy. ๐Ÿ˜›

and playing? this was more of a warmup than a game. ๐Ÿ˜€


el canadiano said:
theezy said:
I thought the topic is about vb's faulty update. ๐Ÿ˜•
Click to expand...

It was. I was just accused of showing people how to hack the forums when I was basically innocent.
Click to expand...

A google search of how to hack vbulletin forums would be more useful. -.-

and from what I can see it's crap and not one that I know of so I'm happy. ๐Ÿ˜›
 
It's not even hacking, it's seaching a word in the FAQ. It would only become illegal if you used the database details to access the database (Section 1 of the Computer Misuse Act 1990 in the UK).

If you were to change the data in the database it then becomes a crime under Section 3 of the same act
 
spyka said:
It's not even hacking, it's seaching a word in the FAQ. It would only become illegal if you used the database details to access the database (Section 1 of the Computer Misuse Act 1990 in the UK).

If you were to change the data in the database it then becomes a crime under Section 3 of the same act
Click to expand...

OOO Spyka knows his laws. ๐Ÿ˜‰
 
Staff can still remove links and such if they feel it is unsuitable, meaning it can still be taken out no matter how much you try to say it is legal ๐Ÿ˜›
 
The Hat Tipper said:
Staff can still remove links and such if they feel it is unsuitable, meaning it can still be taken out no matter how much you try to say it is legal ๐Ÿ˜›
Click to expand...

but then you look hugely unprofessional and retarded if you do ๐Ÿ˜‰
and not to mention that staff member gets owned. ๐Ÿ˜€
 
Earth Be Lostโ„ข said:
The Hat Tipper said:
Staff can still remove links and such if they feel it is unsuitable, meaning it can still be taken out no matter how much you try to say it is legal ๐Ÿ˜›
Click to expand...

but then you look hugely unprofessional and retarded if you do ๐Ÿ˜‰
and not to mention that staff member gets owned. ๐Ÿ˜€
Click to expand...
That is a matter of opinion.
 
spyka said:
It's not even hacking, it's seaching a word in the FAQ. It would only become illegal if you used the database details to access the database (Section 1 of the Computer Misuse Act 1990 in the UK).
Click to expand...
Well UK laws are irrelevant really, as FP isn't necessarily a British website.
 
This is the first time I have ever heard of a forum software making the news because of security issues. They used to just send out emails. Wow. Probably a good thing I'm not a Vbulletin user.
 
Before phpBB and MyBB had security issues (before either of them got security audits), they never made the news for this stuff.
 
el canadiano said:
Before phpBB and MyBB had security issues (before either of them got security audits), they never made the news for this stuff.
Click to expand...

Yeah, but that's a bit of a difference, though, isn't it? PHPBB and MyBB are free, but Vbulletin you have to pay for, so I have a feeling that may be why it got in the news, as Vbulletin is a product that people purchase for their forums, whereas PHPBB and MyBB are free for all users.
 
Ashley said:
el canadiano said:
Before phpBB and MyBB had security issues (before either of them got security audits), they never made the news for this stuff.
Click to expand...

Yeah, but that's a bit of a difference, though, isn't it? PHPBB and MyBB are free, but Vbulletin you have to pay for, so I have a feeling that may be why it got in the news, as Vbulletin is a product that people purchase for their forums, whereas PHPBB and MyBB are free for all users.
Click to expand...

So what? It's nothing big... they found 1 exploit for VB...
My breakdown of PHP, MyBB and VB exploit knowledge is:
VBulletin: 12 exploits.
MyBB: 5 exploits.
phpBB: 18 exploits.

They are the "private" and unknown exploits... it's nothing big...
 
Ashley said:
el canadiano said:
Before phpBB and MyBB had security issues (before either of them got security audits), they never made the news for this stuff.
Click to expand...

Yeah, but that's a bit of a difference, though, isn't it? PHPBB and MyBB are free, but Vbulletin you have to pay for, so I have a feeling that may be why it got in the news, as Vbulletin is a product that people purchase for their forums, whereas PHPBB and MyBB are free for all users.
Click to expand...

But the thing with the open source community is that they get money from donations or other means, and they get a lot of money when they go big. So, eventually, yeah. They got the money to get their security audits done. What surprises me is that overall, phpBB and MyBB have both been much better than vBulletin ever since Kier Darby left the team.
 
My bad then. But I'm not surprised, because phpBB was pretty bad up until they got their audit in 2.0.18.
 
Wow, sounds very, very serious, hopefully all forums have run the patch now.
 
You must log in or register to reply here.

About Us

Since 2007, Forum Promotion has specialized in providing advertising solutions to webmasters looking to promote their communities. We pride ourselves in being the bridge that connects forum administrators, bloggers, and more.

Sponsors

Affiliates

    Universal Gaming The Coffee House

Stay Connected

Back
Top Bottom