9 matches found
CVE-2019-17132
vBulletin through 5.5.4 mishandles custom avatars...
vBulletin updateAvatar Remote Code Execution (CVE-2019-17132)
A remote code execution vulnerability exists in vBulletin Forum. Successful exploitation of this vulnerability will allow remote attackers to execute arbitrary code on the affected system...
vBulletin 5.0 5.5.4 - updateAvatar Authenticated Remote Code Execution
vBulletin 5.0 5.5.4 - updateAvatar Authenticated Remote Code Execution ?php / --------------------------------------------------------------------- vBulletin = 5.5.4 updateAvatar Remote Code Execution Vulnerability ---------------------------------------------------------------------...
vBulletin 5.0 < 5.5.4 - (updateAvatar) Authenticated Remote Code Execution Exploit
Exploit for php platform in category web applications ?php / --------------------------------------------------------------------- vBulletin = 5.5.4 updateAvatar Remote Code Execution Vulnerability --------------------------------------------------------------------- author..............: Egidio...
vBulletin 5.0 < 5.5.4 - 'updateAvatar' Authenticated Remote Code Execution
?php / --------------------------------------------------------------------- vBulletin = 5.5.4 updateAvatar Remote Code Execution Vulnerability --------------------------------------------------------------------- author..............: Egidio Romano aka EgiX mail................:...
vBulletin 5.5.4 Remote Code Execution
--------------------------------------------------------------------- vBulletin = 5.5.4 updateAvatar Remote Code Execution Vulnerability --------------------------------------------------------------------- - Software Link: https://www.vbulletin.com/ - Affected Versions: Version 5.5.4 and prior...
CVE-2019-17132
vBulletin through 5.5.4 mishandles custom avatars...
CVE-2019-17132
CVE-2019-17132 affects vBulletin 5.5.4 and earlier, with a remote code execution via the updateAvatar endpoint from data[extension]/data[filedata] parameters. Several sources document an RCE vulnerability and PoCs/exploits exist; authenticated access is shown in some materials. Impact is high (RC...
CVE-2019-17132
vBulletin through 5.5.4 mishandles custom avatars...