Exploit for #VU4576 Security bypass in vBulletin
Vulnerability identifier: #VU4576
Vulnerability risk: Critical
CVSSv3.1: 4.9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:F/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-264
Exploitation vector: Network
Exploits in database: 2
- March 18, 2020
- vBulletin Administrator Account Creation [Metasploit]
- vBulletin 4.1.x - '/install/upgrade.php' Security Bypass [Exploit-DB]
Impact: Data manipulation
Vulnerable software:
vBulletin
Web applications /
Forum & blogging software
Vendor: vBulletin
