Lucene search
K

8 matches found

0day.today
0day.today
added 2020/08/22 12:0 a.m.609 views

vBulletin 5.1.2 < 5.1.9 - Unserialize Code Execution Exploit

Exploit for php platform in category web applications This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'vBulletin 5.1.2 Unserialize Code Execution', 'Description' = %q This module exploits a PHP...

7.5CVSS6.5AI score0.80635EPSS
Exploits12
Saint
Saint
added 2016/04/15 12:0 a.m.54 views

vBulletin decodeArguments serialized object vulnerability

Added: 04/15/2016 CVE: CVE-2015-7808 Background vBulletin is PHP software for building community websites. Problem A vulnerability in vBulletin 5 Connect allows remote attackers to execute arbitrary PHP code by placing a specially crafted serialized object in the arguments parameter to the...

7.5CVSS7.3AI score0.80635EPSS
Exploits12
Saint
Saint
added 2016/04/15 12:0 a.m.25 views

vBulletin decodeArguments serialized object vulnerability

Added: 04/15/2016 CVE: CVE-2015-7808 Background vBulletin is PHP software for building community websites. Problem A vulnerability in vBulletin 5 Connect allows remote attackers to execute arbitrary PHP code by placing a specially crafted serialized object in the arguments parameter to the...

7.5CVSS7.3AI score0.80635EPSS
Exploits12
canvas
canvas
added 2015/11/24 8:59 p.m.523 views

Immunity Canvas: VBULLETIN_PREAUTH_DECODEARGUMENTS

Name| vbulletinpreauthdecodeArguments ---|--- CVE| CVE-2015-7808 Exploit Pack| CANVAS Description| vBulletin pre-auth remote code execution Notes| CVE Name: CVE-2015-7808 VENDOR: vBulletin Solutions NOTES: Tested on Ubuntu 14.04 against: - vBulletin 5.1.4 - vBulletin 5.0.4 Repeatability: Infinite...

7.5CVSS7.2AI score0.80635EPSS
Exploits12
CVE
CVE
added 2015/11/24 8:0 p.m.71 views

CVE-2015-7808

CVE-2015-7808 affects vBulletin 5 Connect 5.1.2–5.1.9. The vulnerability is a PHP object injection in vB_Api_Hook::decodeArguments that allows a crafted serialized object in the arguments parameter to ajax/api/hook/decodeArguments, enabling remote code execution. Exploitation is demonstrated in p...

7.5CVSS7.6AI score0.80635EPSS
Exploits12References6Affected Software1
0day.today
0day.today
added 2015/11/14 12:0 a.m.65 views

vBulletin 5.1.2 Unserialize Code Execution Exploit

This Metasploit module exploits a PHP object injection vulnerability in vBulletin 5.1.2 to 5.1.9 This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'vBulletin 5.1.2 Unserialize Code...

7.5CVSS6.9AI score0.80635EPSS
Exploits12
Metasploit
Metasploit
added 2015/11/12 8:36 p.m.54 views

vBulletin 5.1.2 Unserialize Code Execution

This module exploits a PHP object injection vulnerability in vBulletin 5.1.2 to 5.1.9 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'vBulletin 5.1.2 Unserialize Code Execution', 'Description' ...

7.5CVSS6.7AI score0.80635EPSS
Exploits12
OpenVAS
OpenVAS
added 2015/11/10 12:0 a.m.38 views

vBulletin 5.1.4 - 5.1.9 PreAuth RCE Vulnerability - Active Check

vBulletin is prone to a remote code execution RCE vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5CVSS7.1AI score0.80635EPSS
Exploits12References1
Rows per page
Query Builder