vBulletin released patches for an undisclosed security vulnerability (CVE-2020-12720)

On May 7, vBulletin, a popular online forum software, announced a patch for a security vulnerability in its software. While details have not yet been disclosed, vBulletin said it is “imperative” that users of their software patch the vulnerability as soon as possible. Based on what we've seen from previous vBulletin vulnerabilities, we anticipate attackers will attempt to attack vulnerable sites as soon as details become available.

A list of Tenable plugins to identify this vulnerability will appear here as they’re released.

For more information, please see our blog.