Lucene search
K

5 matches found

Packet Storm
Packet Storm
added 2015/03/01 12:0 a.m.56 views

vBulletin 4.2.2 Remote Code Injection

Exploit Title: vBulletin 4.x.x 'visitormessage.php' Remote Code Injection Vulnerability + Discovered By: Dariush Nasirpour Net.Edit0r + My Homepage: black-hg.org / nasirpour.info + Date: 2015 27 February + Vendor Homepage: vBulletin.com + Tested on: vBulletin 4.2.2 + Greeting : Ali Razmjoo -...

0.3AI score
Exploits0
Prion
Prion
added 2015/01/02 7:59 p.m.20 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the Moderator Control Panel in vBulletin 4.2.2 allows remote attackers to hijack the authentication of administrators for requests that 1 ban a user via the username parameter in a dobanuser action to modcp/banning.php or 2 unban a user, 3 modify...

6.8CVSS7.6AI score0.01116EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2015/01/02 7:0 p.m.22 views

CVE-2014-9438

Cross-site request forgery CSRF vulnerability in the Moderator Control Panel in vBulletin 4.2.2 allows remote attackers to hijack the authentication of administrators for requests that 1 ban a user via the username parameter in a dobanuser action to modcp/banning.php or 2 unban a user, 3 modify...

7.1AI score0.01116EPSS
Exploits1References3
NVD
NVD
added 2014/10/25 12:55 a.m.24 views

CVE-2014-2021

Cross-site scripting XSS vulnerability in admincp/apilog.php in vBulletin 4.2.2 and earlier, and 5.0.x through 5.0.5 allows remote authenticated users to inject arbitrary web script or HTML via a crafted XMLRPC API request, as demonstrated using the client name...

3.5CVSS5.2AI score0.03389EPSS
Exploits4References7
NVD
NVD
added 2014/10/15 2:55 p.m.28 views

CVE-2014-2022

SQL injection vulnerability in includes/api/4/breadcrumbscreate.php in vBulletin 4.2.2, 4.2.1, 4.2.0 PL2, and earlier allows remote authenticated users to execute arbitrary SQL commands via the conceptid argument in an xmlrpc API request...

7.1CVSS7.9AI score0.02712EPSS
Exploits4References5
Rows per page
Query Builder