Hacked! AT 2.3.7

vBulletin 2 should be just as secure as vB3, I'd think. Since the team still update vB2 with security fixes.

There are security fixes in 2.3.8, as far as I know. So it's best to just stick with that.

I need more help that a link. I know that there is an upgrade, but i would like to know that was my forums hacked because of the known error in 2.3.7.

The best way to find that out would be to ask the hacker

Without knowing how you are being hacked it's difficult to stop it. For instance if your server is being compromised then there is nothing in vB that will stop a hacker from taking over.

Here's some things you can do to increase the level of security for your forums:

1. Upgrade to the latest stable version.
2. Do not install any hacks
3. Password protect your Admin and Mod CPs: http://www.javascriptkit.com/howto/htaccess.shtml
4. Make sure the getadmin.php (vB2) file is NOWHERE on your website
5. If you have phpMyAdmin make sure it's password protected.
6. Inform your host of these hack attempts and ask them to check the logs to see when your account was accessed.
7. Also ask your host to change the login password for your web account
8. Change all your Admin and Mod passwords.
9. Do NOT allow HTML in posts or in sigs.

Note your forums are only as secure as the passwords you use and the server it is on. If the server is accessed then there's nothing vB can do to prevent potential security violations.

Make sure when you change the passwords and junk to make sure they are dufficult to guess something like 46Dhj3dj34XZA2jsd89 or 45wSj238xj2Q (don't use these)

Yeah. Type up some random keyboard stuff. Make sure its got numbers and letters. and that it is 10 + charecters.