CVE-2015-3419
vBulletin 5.x up to 5.1.6 is affected by CVE-2015-3419, where remote authenticated users can bypass authorization and inject private messages into conversations due to an input validation failure. Affected product: vBulletin 5.x (≤ 5.1.6). Root cause: input validation failure enabling unauthorize...