Vbulletin : Security Vulnerabilities, CVEs, Published In 2013 (Sql injection)
CVE-2013-3522
Public exploit
SQL injection vulnerability in index.php/ajax/api/reputation/vote in vBulletin 5.0.0 Beta 11, 5.0.0 Beta 28, and earlier allows remote authenticated users to execute arbitrary SQL commands via the nodeid parameter.
Max CVSS
6.5
EPSS Score
82.75%
Published
2013-05-10
Updated
2013-05-13
1 vulnerabilities found