vBulletin Security eBulletin: Potential Exploit of vB4.1.x & 5.0.x

[FONT=arial]vBulletin Security eBulletin[/FONT]
http://www.vbulletin.com/
[FONT=arial]September 3rd, 2013[/FONT]

[FONT=arial]* vBulletin 4.1.x & 5.0.x Security Issue[/FONT]

[FONT=arial]------ vBulletin 4.1.x & 5.0.x Security Issue ------[/FONT]

[FONT=arial]A potential exploit vector has been found in the vBulletin 4.1+ and 5.0+ installation directories. Our developers are investigating this issue at this time. If deemed necessary we will release the necessary patches. In order to prevent this issue on your vBulletin sites, you should delete the install directory for your installation. This folder is not required for normal operation of vBulletin.[/FONT]

[FONT=arial]The directories that should be deleted are:[/FONT]

[FONT=arial]4.x - /install/[/FONT]

[FONT=arial]5.x - /core/install[/FONT]

[FONT=arial]On vB5, make sure you delete only the install folder, not the core folder.[/FONT]
[FONT=arial]After deleting these directories your sites can not be affected by the issues we’re currently investigating.[/FONT]

[FONT=arial]vBulletin 3.x would not be affected by these issues. However if you want the best security precautions, you should delete your install directory as well.[/FONT]

[FONT=arial]The Support forum thread on this topic can be found here - [/FONT]http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/3991423-potential-vbulletin-exploit-vbulletin-4-1-vbulletin-5

มันคือ security พื้นฐานของ cms ทุกตัวอยู่แล้วที่ไม่ควรทิ้งไว้

ถ้าลบไป มันจะรัน Fix Unique Indexes

ที่อยู่ใน Repair / Optimize Tables ไม่ได้

เพราะไฟล์ /install/mysql-schema.php ไม่มี หรือเก็บไว้เฉพาะไฟล์นี้ได้