Exploit for #VU21323 OS Command Injection in vBulletin
Vulnerability identifier: #VU21323
Vulnerability risk: High
CVSSv3.1: 9.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-78
Exploitation vector: Network
Exploits in database: 8
- June 17, 2021
- September 11, 2020
- September 1, 2020
- March 18, 2020
- CVE-2019-16759-Vbulletin-rce-exploit (Vbulletin rce exploit CVE-2019-16759) [Github]
- vbull (Mass Exploit CVE-2019-16759) [Github]
- vBulletin 5.0 < 5.5.4 - Unauthenticated Remote Code Execution [Exploit-DB]
- vBulletin 5.x - Remote Command Execution (Metasploit) [Exploit-DB]
- vBulletin widgetConfig RCE [Metasploit]
Impact: Code execution
Vulnerable software:
vBulletin
Web applications /
Forum & blogging software
Vendor: vBulletin
