what you don't know can hurt you
Showing 1 - 25 of 100 RSS Feed

Files

vBulletin 4.x.x vB Optimise 2.6.3 Pro Open Redirection
Posted Mar 2, 2019
Authored by KingSkrupellos

vBulletin version 4.x.x with vB Optimise version 2.6.3 Pro suffers from an open redirection vulnerability.

tags | exploit
MD5 | 9054f179049a8a76de6336cccc044ee5

Related Files

vBulletin 4.2.5 vBSEO 3.6.1 Open Redirection
Posted Feb 28, 2019
Authored by KingSkrupellos

vBulletin version 4.2.5 with vBSEO version 3.6.1 suffers from an open redirection vulnerability.

tags | exploit
MD5 | 845c2dbd95e7151cb2428ac26dcc2452
vBulletin 4.x.x DragonByte SEO 2.0.31 Open Redirection
Posted Feb 28, 2019
Authored by KingSkrupellos

vBulletin version 4.x.x with DragonByte SEO version 2.0.31 suffers from an open redirection vulnerability.

tags | exploit
MD5 | 90cca0a408f212ded02691abf208d5d0
vBulletin 4.2.0 ChangUonDyU Chatbox 3.6.0 Cross Site Scripting
Posted Feb 26, 2019
Authored by KingSkrupellos

vBulletin version 4.2.0 with ChangUonDyU Chatbox plugin version 3.6.0 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 8625fc8b7cf34354884954cb504c1c04
vBulletin 4.2.3 SQL Injection
Posted Nov 11, 2016
Authored by Manish Tanwar

vBulletin versions 4.2.3 and below suffer from a remote SQL injection vulnerability in the forumrunner add-on.

tags | exploit, remote, sql injection
MD5 | 29cdaddccd60287215d37c62c2e7baeb
vBulletin 5.2.2 / 4.2.3 / 3.8.9 Server Side Request Forgery
Posted Aug 8, 2016
Authored by Dawid Golunski

vBulletin versions 5.2.2 and below, 4.2.3 and below, and 3.8.9 and below suffer from a pre-auth server side request forgery vulnerability.

tags | exploit
advisories | CVE-2016-6483
MD5 | 64d6a9fbed7ba7874703b83d32249152
Debian Security Advisory 3546-1
Posted Apr 8, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3546-1 - Hans Jerry Illikainen discovered that missing input sanitising in the BMP processing code of the optipng PNG optimiser may result in denial of service or the execution of arbitrary code if a malformed file is processed.

tags | advisory, denial of service, arbitrary
systems | linux, debian
advisories | CVE-2016-2191
MD5 | 9092a28c959b1d9f652cdaa63dcdbaa8
vBulletin 5.1.2 Unserialize Code Execution
Posted Nov 13, 2015
Authored by Netanel Rubin, cutz, Julien (jvoisin) Voisin | Site metasploit.com

This Metasploit module exploits a PHP object injection vulnerability in vBulletin 5.1.2 to 5.1.9

tags | exploit, php
advisories | CVE-2015-7808
MD5 | 5f61a73548cbcc043c7dc16675b4a160
vBulletin Memcache Remote Code Execution
Posted Aug 15, 2015
Authored by Joshua Rogers

vBulletin versions prior to 4.2.2 suffer from a memcache related remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 7f78981d120fc46f6a3ac2c1b33290c0
vBulletin 4.2.2 Remote Code Injection
Posted Mar 1, 2015
Authored by Net.Edit0r

vBulletin version 4.2.2 suffers from a remote code injection vulnerability.

tags | exploit, remote
MD5 | 8d9afe95986cecba6930ea94ef82c3be
vBulletin 5.1.3 Cross Site Scripting
Posted Feb 13, 2015
Authored by Jing Wang

vBulletin versions 3.5.4, 3.6.0, 3.6.7, 3.8.7, 4.2.2, 5.0.5, and 5.1.3 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2014-9469
MD5 | b906d8cce76417069dca0ccbac684490
vBulletin Moderator Control Panel 4.2.2 CSRF
Posted Dec 17, 2014
Authored by Daniel Tomescu

The moderator control panel in vBulletin version 4.2.2 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | c26baa5b37f4fb7f3bdadb4e7989a688
vBulletin 4.2.1 Open Redirect
Posted Nov 4, 2014
Authored by Renzi

vBulletin version 4.2.1 suffers from an open redirection vulnerability.

tags | exploit
MD5 | e6d032e39454031d7c90fd6cd92c0d4b
vBulletin 4.x SQL Injection
Posted Oct 13, 2014
Authored by oststrom

vBulletin version 4.x suffers from a remote SQL injection vulnerability via the xmlrpc API.

tags | exploit, remote, sql injection
advisories | CVE-2014-2022
MD5 | e6bdda4ab56e04055a0d60917518e24a
vBulletin 5.x / 4.x Persistent Cross Site Scripting
Posted Oct 12, 2014
Authored by oststrom

vBulletin versions 5.x and 4.x suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2014-2021
MD5 | 74d91b4e5f7476c85db32dcb18f5630f
vBulletin 4.1.2 SQL Injection
Posted Sep 3, 2014
Authored by D35m0nd142

Automated SQL injection exploit for vBulletin versions 4.0.x through 4.1.2 that makes use of a vulnerability originally disclosed in May of 2011.

tags | exploit, sql injection
MD5 | 0be5ac6c9a1b2855a08e9d27a7aabe03
vBulletin 5.1.2 SQL Injection
Posted Jul 21, 2014
Authored by Nytro

vBulletin version 5.1.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | d9b677434bf4017a8fb77abad7268539
vBulletin 5.1 Cross Site Scripting
Posted Apr 18, 2014
Authored by Romanian Security Team

vBulletin version 5.1 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 0532c9cbc0f6ba703591f071c9ecab73
vBulletin YUI 2.9.0 Cross Site Scripting
Posted Jan 10, 2014
Authored by TUNISIAN CYBER

vBulletin YUI version 2.9.0 suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.

tags | exploit, xss
MD5 | 7a300385eabc8a2f853b02c62302caf1
vBulletin index.php/ajax/api/reputation/vote nodeid Parameter SQL Injection
Posted Dec 10, 2013
Authored by juan vazquez, Orestis Kourides | Site metasploit.com

This Metasploit module exploits a SQL injection vulnerability found in vBulletin 5 that has been used in the wild since March 2013. This Metasploit module uses the sqli to extract the web application's usernames and hashes. With the retrieved information tries to log into the admin control panel in order to deploy the PHP payload. This Metasploit module has been tested successfully on VBulletin Version 5.0.0 Beta 13 over an Ubuntu Linux distribution.

tags | exploit, web, php, sql injection
systems | linux, ubuntu
advisories | CVE-2013-3522, OSVDB-92031
MD5 | 0f801bcadbfc3c75cd3c5a572f5f08c2
vBulletin 4.1.x / 5.x.x Administrative User Injection
Posted Oct 28, 2013
Authored by Simo Ben Youssef

vBulletin versions 4.1.x and 5.x.x suffer from a remote unauthenticated administrative user injection vulnerability via upgrade.php.

tags | exploit, remote, php
MD5 | 7b0af1994f2dfa5aaf6675fb81c62955
vBulletin 4.0.x SQL Injection
Posted Jul 24, 2013
Authored by n3tw0rk

vBulletin version 4.0.x appears to suffer from a remote SQL injection vulnerability in the administrative functionality.

tags | exploit, remote, sql injection
MD5 | 2b64e85f5ca1b2250207d8ee15c00910
vBulletin Advanced User Tagging Cross Site Scripting
Posted Jul 10, 2013
Authored by []0iZy5

The vBulletin Advanced User Tagging module suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
MD5 | 8e61473e1ebd025bd286810d021e02df
vBulletin vBShout Cross Site Scripting
Posted Jul 10, 2013
Authored by []0iZy5

The vBulletin vBShout module suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
MD5 | ebcf98a0f2c4e1a68443ecd9db3545d3
vBulletin 3.x / 4.x AjaxReg SQL Injection
Posted Dec 8, 2012
Authored by Cold z3ro

vBulletin versions 3.x and 4.x suffer from an AjaxReg remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2c737bff2f62e729cae097a6efacd9a5
vBulletin 5.0.0 Beta 19 Cross Site Scripting
Posted Nov 22, 2012
Authored by KrypTiK

vBulletin version 5.0.0 Beta 19 suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | f92989a0d5f1eb6771486fe3d31bf2fb
Page 1 of 4
Back1234Next

File Archive:

October 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    25 Files
  • 2
    Oct 2nd
    13 Files
  • 3
    Oct 3rd
    1 Files
  • 4
    Oct 4th
    1 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    15 Files
  • 7
    Oct 7th
    15 Files
  • 8
    Oct 8th
    11 Files
  • 9
    Oct 9th
    3 Files
  • 10
    Oct 10th
    1 Files
  • 11
    Oct 11th
    1 Files
  • 12
    Oct 12th
    8 Files
  • 13
    Oct 13th
    12 Files
  • 14
    Oct 14th
    23 Files
  • 15
    Oct 15th
    4 Files
  • 16
    Oct 16th
    13 Files
  • 17
    Oct 17th
    1 Files
  • 18
    Oct 18th
    1 Files
  • 19
    Oct 19th
    27 Files
  • 20
    Oct 20th
    41 Files
  • 21
    Oct 21st
    15 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close