Lucene search
K

5 matches found

Exploit DB
Exploit DB
added 2010/07/25 12:0 a.m.32 views

vBulletin - 'misc.php' Template Name Arbitrary Code Execution (Metasploit)

$Id: phpvbulletintemplate.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7.5CVSS7.1AI score0.35818EPSS
Exploits3
Circl
Circl
added 2010/07/25 12:0 a.m.15 views

CVE-2005-0511

creationtimestamp| type| source ---|---|--- 2010-07-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16896 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/phpvbulletintemplate.rb 2025-02-06 03:13:38+00:00|...

7.5CVSS5.8AI score0.35818EPSS
Exploits3References2
Packet Storm
Packet Storm
added 2009/10/30 12:0 a.m.34 views

vBulletin misc.php Template Name Arbitrary Code Execution

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'vBulletin...

7.5CVSS0.2AI score0.35818EPSS
Exploits3
Metasploit
Metasploit
added 2007/01/05 5:58 a.m.30 views

vBulletin misc.php Template Name Arbitrary Code Execution

This module exploits an arbitrary PHP code execution flaw in the vBulletin web forum software. This vulnerability is only present when the "Add Template Name in HTML Comments" option is enabled. All versions of vBulletin prior to 3.0.7 are affected. This module requires Metasploit:...

7.5CVSS7.7AI score0.35818EPSS
Exploits3
CVE
CVE
added 2005/02/23 5:0 a.m.59 views

CVE-2005-0511

The CVE-2005-0511 issue affects vBulletin 3.0.6 and earlier (per CVE listing) where enabling “Add Template Name in HTML Comments” allows remote PHP code execution via nested variables in the template parameter. Connected advisories confirm this flaw is exploitable in practice, with public PoCs/mo...

7.5CVSS7.5AI score0.35818EPSS
Exploits3References4Affected Software1
Rows per page
Query Builder