Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:7 p.m.14 views

CVE-2020-7373

vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted subWidgets data in an ajax/render/widgettabbedcontainertabpanel request. NOTE: this issue exists because of an incomplete fix for CVE-2019-16759. ALSO NOTE: CVE-2020-7373 is a duplicate of CVE-2020-17496. CVE-2020-17496 is...

9.8CVSS7.1AI score0.99728EPSS
Exploits29References1
Check Point Advisories
Check Point Advisories
added 2020/11/25 12:0 a.m.15 views

VBulletin Remote Code Execution (CVE-2020-7373)

A remote code execution vulnerability exists in VBulletin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.5AI score0.46031EPSS
Exploits3
NVD
NVD
added 2020/10/30 5:15 p.m.37 views

CVE-2020-7373

vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted subWidgets data in an ajax/render/widgettabbedcontainertabpanel request. NOTE: this issue exists because of an incomplete fix for CVE-2019-16759. ALSO NOTE: CVE-2020-7373 is a duplicate of CVE-2020-17496. CVE-2020-17496 is...

9.8CVSS9.8AI score0.46031EPSS
Exploits3References4
Prion
Prion
added 2020/10/30 5:15 p.m.36 views

Design/Logic Flaw

vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted subWidgets data in an ajax/render/widgettabbedcontainertabpanel request. NOTE: this issue exists because of an incomplete fix for CVE-2019-16759. ALSO NOTE: CVE-2020-7373 is a duplicate of CVE-2020-17496. CVE-2020-17496 is...

7.5CVSS9.7AI score0.99728EPSS
Exploits29References4Affected Software1
CVE
CVE
added 2020/10/30 4:50 p.m.120 views

CVE-2020-7373

Summary (CVE-2020-17496 / CVE-2020-7373): vBulletin 5.5.4–5.6.2 is vulnerable to remote code execution via crafted subWidgets data in an ajax/render/widget_tabbedcontainer_tab_panel request. This issue stems from an incomplete fix of CVE-2019-16759, and CVE-2020-7373 is a duplicate of CVE-2020-17...

9.8CVSS9.7AI score0.46031EPSS
Exploits3References4Affected Software1
Cvelist
Cvelist
added 2020/10/30 4:50 p.m.33 views

CVE-2020-7373

vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted subWidgets data in an ajax/render/widgettabbedcontainertabpanel request. NOTE: this issue exists because of an incomplete fix for CVE-2019-16759. ALSO NOTE: CVE-2020-7373 is a duplicate of CVE-2020-17496. CVE-2020-17496 is...

9.8AI score0.46031EPSS
Exploits3References4
ATTACKERKB
ATTACKERKB
added 2020/10/30 12:0 a.m.77 views

CVE-2020-7373

vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted subWidgets data in an ajax/render/widgettabbedcontainertabpanel request. NOTE: this issue exists because of an incomplete fix for CVE-2019-16759. ALSO NOTE: CVE-2020-7373 is a duplicate of CVE-2020-17496. CVE-2020-17496 is...

9.8CVSS3.7AI score0.99728EPSS
Exploits29References5
Rows per page
Query Builder