I also run a vBulletin forum at my website, Which is in my opinion the best forum script out there, I just updated it from 3.0.0 to 3.0.3 like a month ago, last week they came up with this new 3.0.4 version, I updated. And NOW they just released a new 3.0.5 requiring a critical update for the users with previous versions. PHP is just a bunch of security holes. (Like everything?)
-
The sum of intelligence in the earth is a constant, the population increases. -
No, actually the first update was addressing the original vulnarabilites and the second was because they didn't FULLY update their software. Only the original update was PHP's fault, and they released a fix (4.3.10 or 5.0.3) within a day.
Originally posted by http://www.hardened-php.net/advisories/012004.txtVBulletin 3.0.5 updateOriginally posted by http://www.php.net
3.0.4 update- Programmer - -
I've never really messed with vBulletin, besides helping a friend set it up once. I've always been a phpBB guy myself. I like the way it looks by default, it's easier to skin for me, and it does everything I've always needed it to do. Plus, the majority of the forums I've ever been to were built on it.Comment
-
Just like I said folks,
Here straight form the vBulletin homepage.
"vBulletin 3.0.6 and 2.3.6 Realeased!
vBulletin 3.0.6 and 2.3.6 are security and bug fix releases. They fix a recently discovered XSS issue regarding BB code parsing.
All versions of vBulletin prior to 3.0.6 and 2.3.6 are vulnerable. The only workaround is to disable BB code parsing in signatures and all forums where untrusted users can post.
We strongly urge all customers to upgrade or patch their installations ASAP."The sum of intelligence in the earth is a constant, the population increases.Comment
-
Are you calling us "untrusted"? I am shocked ... shocked and offended. The Internet is a eutopia of collaboration (and porn) between like-minded individuals in an unlimited interaction space. The very idea that someone would try to impugn the good intentions of the community sickens me.Originally posted by Krytycal
But just in case, I see we are already running 3.0.6 (huzzah for Nulltone).Comment
-
Yes, huzzah for me!Originally posted by Voltage SpikeComment
-
Huzzah? Hmm...must be Spanish.
:)Answering easy questions since 1987
Si Dieu est pour moi, qui peut ĂȘtre contre moi?Comment
-
Personally, I like phpBB because of it;s easy-to-use admin CP. I just got aggrivated when I was trying to setup my forum with vBulletin, so I wiped everything and started fresh with phpBB. And honestly, I do not really care if someone roots my server box, just another intersting thing to put on the news section. Screenshots of a defaced page are always nice traffic.There once was a Windows box with no firewall. Keyword is, there once was.
Comment
-
/me prepares to enlighten the net admin. hexticComment
-
Wow, someone has topped me in sarcasm. Is it a sign of the apocalypse?Originally posted by Voltage SpikeThere once was a Windows box with no firewall. Keyword is, there once was.
Comment
-
I would never question the good intentions of our loved members, but there's always a bunch of morons trying to screw things up. (see Tard hall or Dev/Null for more info)Originally posted by Voltage SpikeThe sum of intelligence in the earth is a constant, the population increases.Comment
-
i dont have much experience at all with vbulletin, but i could imagine all of the updates getting a little annoying at times.before asking a retarded question, google it. google knows all.Comment
Comment