The widespread vBulletin CMS has a vulnerability that allows remote attackers to create new administrative accounts.
Back in August, users of versions in the 4.1+ and 5+ series were advised to delete the /install/ or /core/install/ directories (depending on version) as a workaround against the bug, but vBulletin didn't advise of the impact of the problem.
Full Article
This, ladies and gentlemen, is why Webroot doesn't use the same account for the Webroot console and the Webroot forum.
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.