Published: 02/05/2005 Updated: 18/10/2016

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 510

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Direct code injection vulnerability in forumdisplay.php in vBulletin 3.0 up to and including 3.0.4, when showforumusers is enabled, allows remote malicious users to execute inject arbitrary PHP commands via the comma parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
jelsoft vbulletin 3.0
jelsoft vbulletin 3.0.1
jelsoft vbulletin 3.0.2
jelsoft vbulletin 3.0.3
jelsoft vbulletin 3.0.4

<?php /************************************************************** # # vbulletin 30x execute command by AL3NDALEEB al3ndaleeb[at]uk2net # # First condition : $vboptions['showforumusers'] == True , the admin must set # showforumusers ON in vbulletin options # Second condition: $bbuserinfo['userid'] == 0 , you must be an visitor/guest # T ...

Exploit: ---------------- site/forumdisplayphp?GLOBALS[]=1&f=2&comma="system('id')" Conditions: ---------------- 1st condition : $vboptions['showforumusers'] == True , the admin must set showforumusers ON in vbulletin options 2nd condition : $bbuserinfo['userid'] == 0 , you must be an visitor/guest 3rd condition ...

NVD-CWE-Other http://www.securityfocus.com/bid/12542 http://marc.info/?l=bugtraq&m=110840807415315&w=2 https://nvd.nist.gov https://www.exploit-db.com/exploits/820/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-0429

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect