Mình mới nhận được Email của VBB gửi:

vBulletin Patch Release: vBulletin 4.0.0 PL1 / 3.8.4 PL2 / 3.7.6 PL2

Nội dung nôm na là :
VBulletin 4.0.0 PL1 / 3.8.4 PL2 / 3.7.6 PL2 has been released

An exploit in our input validation has recently been discovered. This could allow a brute force attack to comprise and spoof input data for a given user. To resolve this issue, it is necessary to release a patch level version of the active versions of vBulletin.

As with all security-based releases, it´s recommend that everyone upgrade as soon as possible in order to prevent any potential damage resulting from the flaw being exploited.
Các bác có thể xem thêm ở đây :
http://www.vbulletin.com/forum/showt...6-PL2-Released

Bác nào xài bản null thì cũng nên chú ý, đây là lỗi Bảo Mật chứ không phải lỗi về hiển thị.