2 matches found
CVE-2017-7569
In vBulletin before 5.3.0, remote attackers can bypass the CVE-2016-6483 patch and conduct SSRF attacks by leveraging the behavior of the PHP parseurl function, aka VBV-17037...
CVE-2017-7569
CVE-2017-7569 affects vBulletin prior to 5.3.0. An SSRF bypass allows remote attackers to bypass the CVE-2016-6483 patch by abusing PHP parse_url behavior, enabling SSRF conditions. The vulnerability context is that the patch for CVE-2016-6483 did not fully mitigate SSRF opportunities, and exploi...