Hackers actively exploiting vBulletin zero-day remote code execution vulnerability in forum software. The vulnerability resides in the way an internal widget file of the forum software package accepts configurations via the URL parameters and then parse them on the server without proper safety checks, allowing attackers to inject commands and remotely execute code on the system. Hackers have already started scanning the Internet to target vulnerable vBullets in the wild, sources tell The Hacker News. Vulnerability affects more than 100,000 websites, including Fortune 500 and Alexa Top 1 million companies websites.
Source: https://thehackernews.com/2019/09/vbulletin-zero-day-exploit.html