How XenForo import vBulletin passwords?


Well-known member
My coder is trying to migrate vB5 passwords to XenForo so I'm trying to find out how XenForo importer imports vBulletin 4 passwords if they are hashed twice and salted?

As far as I know, XenForo uses SHA1 encryption so vBulletin MD5 passwords need to be decrypted and then encrypted in SHA1 format...
Last edited:


Well-known member
You need to create a proper XenForo_Authetication schema and associated classes to allow the software to know where the passwords came from. There is no need to decrypt.


Well-known member
To expand a little, XenForo doesn't have one arbitrary password hashing algorithm - when it imports data from another board, it inherits that board's algorithm for that password so it still works. Any new passwords, or passwords changed after import, will be hashed with XenForo's native (and better) password algorithm.

Basically, you'd figure out how vB5 manages its passwords, then create a matching class that extends XenForo_Authentication to implement it in XF. :)