CVE-2014-2023
CVE-2014-2023 describes SQL injection in the Tapatalk plugin for vBulletin (versions 4.9.0 and earlier and 5.x up to 5.2.1). A remote attacker can trigger arbitrary SQL execution via crafted XML-RPC requests to mobiquo/functions/unsubscribe_forum.php or unsubscribe_topic.php. Affected product: Ta...