9 matches found
vBulletin <= 4.2.3 - SQL Injection
vBulletin versions 3.6.0 through 4.2.3 are vulnerable to an SQL injection vulnerability in the vBulletin core forumrunner addon. The vulnerability allows an attacker to execute arbitrary SQL queries and potentially access sensitive information from the database. id: CVE-2016-6195 info: name:...
vBulletin 4.2.3 SQL Injection
Exploit Title : vBulletin = 4.2.3 SQL Injection CVE-2016-6195 Author : Manish Kishan Tanwar AKA error1046 https://twitter.com/IndiShell1046 Date : 25/08/2015 Love to : zero cool,Team indishell,Mannu,Viki,Hardeep Singh,Jagriti,Kishan Singh and ritu rathi Tested At : Indishell Laboriginally develop...
CVE-2016-6195
SQL injection vulnerability in forumrunner/includes/moderation.php in vBulletin before 4.2.2 Patch Level 5 and 4.2.3 before Patch Level 1 allows remote attackers to execute arbitrary SQL commands via the postids parameter to forumrunner/request.php, as exploited in the wild in July 2016...
CVE-2016-6195
CVE-2016-6195 affects the vBulletin core ForumRunner addon (versions 3.6.0–4.2.3) via the postids parameter to forumrunner/request.php, enabling remote SQL injection. Root cause: improper handling in ForumRunner leading to arbitrary SQL execution. Impact: potential data exposure and compromise of...
vBulletin /forumrunner/request.php SQL injection vulnerability
Author: janesknow Chong Yu 404 security lab Date: 2016-11-15 Vulnerability overview Vulnerability description vBulletin is a commercial Forum application, using PHP language, researchers have found that the VBulletin core plug-in forumrunner presence of SQL injection vulnerabilities: CVE-2016-619...
vBulletin 3.6.x to 4.2.2/4.2.3 Forumrunner 'request.php' SQLi Vulnerability - Active Check
The vBulletin core forumrunner addon enabled by default is affected by an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2016 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...
CVE-2016-6195
creationtimestamp| type| source ---|---|--- 2015-08-25 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40751 2016-09-06 14:25:29+00:00| seen| https://t.me/alexmakus/654 2026-06-19 16:45:34+00:00| exploited|...
vBulletin 3.6.0 < 4.2.3 - 'ForumRunner' SQL Injection
Exploit Title : vBulletin = 4.2.3 SQL Injection CVE-2016-6195 Author : Manish Kishan Tanwar AKA error1046 https://twitter.com/IndiShell1046 Date : 25/08/2015 Love to : zero cool,Team indishell,Mannu,Viki,Hardeep Singh,Jagriti,Kishan Singh and ritu rathi Tested At : Indishell Laboriginally develop...
vBulletin 3.6.0 4.2.3 - ForumRunner SQL Injection
vBulletin 3.6.0 4.2.3 - ForumRunner SQL Injection Exploit Title : vBulletin = 4.2.3 SQL Injection CVE-2016-6195 Author : Manish Kishan Tanwar AKA error1046 https://twitter.com/IndiShell1046 Date : 25/08/2015 Love to : zero cool,Team indishell,Mannu,Viki,Hardeep Singh,Jagriti,Kishan Singh and ritu...