Attackers are mass-exploiting a vBulletin 5 vulnerability, now patched, allowing remote code execution, after an exploit was anonymously published Monday (Dan Goodin/Ars Technica)

Dan Goodin / Ars Technica:
Attackers are mass-exploiting a vBulletin 5 vulnerability, now patched, allowing remote code execution, after an exploit was anonymously published Monday  —  Devs push a fix for the flaw, but hackers are still hitting unpatched sites.  —  Attackers are mass-exploiting an anonymously disclosed vulnerability …

from Techmeme https://ift.tt/2noA3j5