Show filters
12 Total Results
Displaying 11-12 of 12
Sort by:
Attacker Value
Unknown

CVE-2005-0511

Disclosure Date: February 21, 2005 (last updated February 22, 2025)
misc.php for vBulletin 3.0.6 and earlier, when "Add Template Name in HTML Comments" is enabled, allows remote attackers to execute arbitrary PHP code via nested variables in the template parameter.
0
0
Attacker Value
Unknown

CVE-2004-1515

Disclosure Date: December 31, 2004 (last updated February 22, 2025)
SQL injection vulnerability in (1) ttlast.php and (2) last10.php in vBulletin 3.0.x allows remote attackers to execute arbitrary SQL statements via the fsel parameter, as demonstrated using last.php.
0
0
View More Topics  < Previous