35,000 vBulletin Sites Have Already Been Exploited By Week Old Hole

35,000 vBulletin Sites Have Already Been Exploited By Week Old Hole 91

Posted by Unknown Lamer on Wednesday October 16, 2013 @10:51AM from the delete-stale-files dept.

realized writes "Last week Slashdot covered a new vBulletin exploit. Apparently hackers have been busy since then because according to security firm Imperva, more than 35,000 sites were recently hacked via this vulnerability. The sad part about this is that it could have all been avoided if the administrator of the websites just removed the /install and/or /core/install folders – something that you would think the installer should do on its own." Web applications that have write access to directories they then load code from have always seemed a bit iffy to me (wp-content anyone?)

35,000 vBulletin Sites Have Already Been Exploited By Week Old Hole

Search 91 Comments Log In/Create an Account

Comments Filter:

Week old by Slashdot time (Score:4, Funny)

by Anonymous Coward writes: on Wednesday October 16, 2013 @10:58AM (#45143219)

Months old by the rest of the internet...

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

35,000 vBulletin Sites Have Already Been Exploited By Week Old Hole 91

35,000 vBulletin Sites Have Already Been Exploited By Week Old Hole More Login

35,000 vBulletin Sites Have Already Been Exploited By Week Old Hole

Week old by Slashdot time (Score:4, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot