Warned that indexU with vBulletin leaves security hole

[Frisk151]

I was trying to have my indexU integrated with vBulletin 3 and the coder/hacker that was doing the work halted in the middle and said it would leave a huge security hole running these together coming from the indexu side.
I don't know the exact details (though he said he would be happy to give them) but I wanted to know if anyone else has discovered this?

[Polo5]

yep... you are not the first one who mentions these... some day ago another user came telling us about it... he didnt know anything about it either.. but he said, that he heard that there were some security holes if these two sofwares were convined....

i wonder if is the same with phpbb....

someone areadly morphed this two together... but i dont know if it has a security hole or not....

hope you can find your answer....

[TokooCom]

i need it too , it's very userful , i think!

[Mythotical]

I run vb with integrated indexu. The security hole comes from vbulletin which they have a file for download now, its the init.php but they suggest you upgrade to 3.0.5 which I am about to do. Once you do that, the security hole should be fixed. Basically what this hole does is allow someone access to your server, same as the phpbb security hole, and allows them to delete everything on the hd, phpbb hole allows them to only delete your information, the one for vbulletin is allowing the entire HD on the server, it also allows them to take all your files for vbulletin and download them including user information and if they are good at hacking, they can find out people's passwords which is not good. I don't have that worry cuz I uploaded the init.php file and am about to upgrade to 3.0.5.

Hope this helps everyone out.

TokooCom, I can do an easy integration for you if you would like. Then you can see for yourself and have your coder go over it.

Myth