A new vBulletin exploit for sale has appeared on Trojanforge.com. The seller wants 1.2k for it and claims it works with all vBulletin’s 5 and up including the beta versions.
Thread info:
The vulnerability works on any version of vBulletin 5, including all Beta versions.
In the brought package you`ll get a guide with images and the steps required to archeive the vulnerability.
+--------------------------------------------------------------------+ |#Title: vBulletin 5 SQL Injection > Beta Whatever |#Author: 0x0A |#Date: Dec 11, 2012 |#Type: SQL Injection |#Homepage: hackyard.net/ /- trojanforge.com |#Version: 5 > Beta XX |#Verified! +---------------------------------------------------------------------+
The sale has been verified by the admins of the forum, you can find the thread here: http://trojanforge.com/showthread.php?t=1760.