Lucene search

CVE-2023-25135

🗓️ 03 Feb 2023 05:10:15Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 88 Views

vBulletin 5.6.9 PL1 allows unauthenticated remote code execution via crafted HTTP reques

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2023-25135	3 Feb 202300:00	–	cvelist
Nuclei	vBulletin <= 5.6.9 - Pre-authentication Remote Code Execution	9 May 202316:40	–	nuclei
Prion	Deserialization of untrusted data	3 Feb 202305:15	–	prion
NVD	CVE-2023-25135	3 Feb 202305:15	–	nvd

Nvd

Node

vbulletin vbulletinMatch5.6.7-

vbulletin vbulletinMatch5.6.8-

vbulletin vbulletinMatch5.6.9-

Source	Link
ambionics	www.ambionics.io/blog/vbulletin-unserializable-but-unreachable
forum	www.forum.vbulletin.com/forum/vbulletin-announcements/vbulletin-announcements_aa/4473890-vbulletin-5-6-9-security-patch

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Feb 2023 05:15Current

9.6High risk

Vulners AI Score9.6

CVSS39.8

EPSS0.83375

CWE-502