Categories

Applications (244)
Blogs (7)
Content Management (158)
Customer Relationship (4)
Discussion Boards (35)
E-Commerce (15)
General Purpose Directories (2)
Image Galleries (21)
Mailing Lists (1)
Tips (3)
Vulnerabilities (357)
Access Bypass (53)
Cross Site Scripting (134)
Denial Of Service (2)
File Inclusion (53)
Information Disclosure (15)
Privilege Escalation (2)
Remote Command Execution (17)
Session Hijacking (2)
SQL Injection (137)
« PHProjekt Multiple Vulnerabilities
Tip Of the Day: Be proactive »

vBulletin SQL Injection

Published by CS Lee March 15th, 2007 in Content Management and SQL Injection.

Application: vBulletin
Version: 3.6.5 or earlier
Vendor’s URL: http://www.vbulletin.com/
Bug Type: SQL Injection
Risk: Low

Solution:
- Edit the source code to ensure that input is properly sanitized.
- Waiting for official patch/update from vendor
- http://www.vbulletin.org/forum/portal.php

0 Responses to “vBulletin SQL Injection”

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must login to post a comment.

« PHProjekt Multiple Vulnerabilities
Tip Of the Day: Be proactive »

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional