Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in admincp/admincalendar.php in vBulletin 3.7.3.pl1 allows remote authenticated administrators to execute arbitrary SQL commands via the holidayinfo[recurring] parameter, a different vector than CVE-2005-3022.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
vBulletin admincp/admincalendar.php模块SQL注入漏洞
Vulnerability Description
vBulletin是一款开放源代码的PHP论坛程序。 vBulletin论坛的admincp/admincalendar.php文件没有正确地验证用户提交参数: -------------------[original source code]------------------ if($_POST['do'] == 'saveholiday') { $vbulletin->input->clean_array_gpc('p', array( 'holidayid' => TYPE_INT, 'holid
CVSS Information
N/A
Vulnerability Type
N/A