Vbulletin Security Vulnerabilities and Issues — Vbulletin CVE List

Lucene search

VbulletinVbulletin

10 matches found

CVE•added 2019/09/24 10:15 p.m.•1171 views

CVE-2019-16759

vBulletin 5.x through 5.5.4 allows remote command execution via the widgetConfig[code] parameter in an ajax/render/widget_php routestring request.

9.8CVSS9.6AI score0.94407EPSS

CVE•added 2020/08/12 2:15 p.m.•1022 views

CVE-2020-17496

vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted subWidgets data in an ajax/render/widget_tabbedcontainer_tab_panel request. NOTE: this issue exists because of an incomplete fix for CVE-2019-16759.

9.8CVSS9.8AI score0.94407EPSS

CVE•added 2020/05/08 12:15 a.m.•271 views

CVE-2020-12720

vBulletin before 5.5.6pl1, 5.6.0 before 5.6.0pl1, and 5.6.1 before 5.6.1pl1 has incorrect access control.

9.8CVSS9.1AI score0.93867EPSS

CVE•added 2019/10/04 12:15 p.m.•149 views

CVE-2019-17132

vBulletin through 5.5.4 mishandles custom avatars.

9.8CVSS9.4AI score0.31714EPSS

CVE•added 2025/05/27 4:15 a.m.•102 views

CVE-2025-48828

Certain vBulletin versions might allow attackers to execute arbitrary PHP code by abusing Template Conditionals in the template engine. By crafting template code in an alternative PHP function invocation syntax, such as the "var_dump"("test") syntax, attackers can bypass security checks and execute...

9CVSS9.5AI score0.68058EPSS

CVE•added 2023/02/03 5:15 a.m.•101 views

CVE-2023-25135

vBulletin before 5.6.9 PL1 allows an unauthenticated remote attacker to execute arbitrary code via a crafted HTTP request that triggers deserialization. This occurs because verify_serialized checks that a value is serialized by calling unserialize and then checking for errors. The fixed versions ar...

9.8CVSS9.6AI score0.92924EPSS

CVE•added 2020/10/30 5:15 p.m.•98 views

CVE-2020-7373

9.8CVSS9.7AI score0.94407EPSS

CVE•added 2016/08/30 7:59 p.m.•87 views

CVE-2016-6195

SQL injection vulnerability in forumrunner/includes/moderation.php in vBulletin before 4.2.2 Patch Level 5 and 4.2.3 before Patch Level 1 allows remote attackers to execute arbitrary SQL commands via the postids parameter to forumrunner/request.php, as exploited in the wild in July 2016.

9.8CVSS9.9AI score0.85213EPSS

CVE•added 2017/12/14 12:29 a.m.•66 views

CVE-2017-17672

In vBulletin through 5.3.x, there is an unauthenticated deserialization vulnerability that leads to arbitrary file deletion and, under certain circumstances, code execution, because of unsafe usage of PHP's unserialize() in vB_Library_Template's cacheTemplates() function, which is a publicly expose...

9.8CVSS9.5AI score0.08279EPSS

CVE•added 2017/12/14 12:29 a.m.•46 views

CVE-2017-17671

vBulletin through 5.3.x on Windows allows remote PHP code execution because a require_once call is reachable with an unauthenticated request that can include directory traversal sequences to specify an arbitrary pathname, and because ../ traversal is blocked but ..\ traversal is not blocked. For ex...

9.8CVSS9.8AI score0.01286EPSS