I am dealing with the security issue for a client.
In this message: Security Notice: Update for vBGallery v2.5
You say we have to patch "profile_start.php" in /forums/includes/vbgallery/ but the file doesn't exist on the sites I am managing for a client?
Does this vulnerability only exist in this file? Therefore if the file is not on the server, they are immune to the threat?