Hello dear Customers and Friends,
An exploit has come to our attention that necessitates the release of a Patch for all currently supported versions, including:
- vBSEO 3.6.0
- vBSEO 3.5.2
- vBSEO 3.5.1
- vBSEO 3.5.0
Versions below 3.5.0 are no longer supported and have met end of life, however they have been patched as well:
- vBSEO 3.3.2
- vBSEO 3.3.1
- vBSEO 3.3.0
All of the above install packages in the downloads area have been updated should you wish to re-install the entire product. A PL tag has been added to all of the vBSEO packages available on our downloads area.
It is recommended to apply the patch by downloading a fresh copy of vBSEO from your Downloads area, however if you don't feel comfortable doing so, the fix can be applied manually:
For vBSEO 3.5.x and newer versions:
In your "vbseo/includes/functions_vbseo_vb.php" file, please find (first instance):
Add below:PHP Code:
For vBSEO 3.3.x and earlier versions:PHP Code:
In your "includes/functions_vbseo_vb.php" file, please find (first instance):
Add above:PHP Code:
$rid = $db->vbseodb_query($q = "
Please note that this security issue has no relevance with the redirect issue that many users have been reporting through vBulletin.com and vBSEO.com.PHP Code:
We encourage all users to apply the patch as soon as possible.
If you have any questions, please don't hesitate to let us know. The vBSEO Support Team will be ready to assist via ticket or this thread.
The vBSEO Team.