Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The install/upgrade.php scripts in vBulletin 4.1 and 5 allow remote attackers to create administrative accounts via the customerid, htmldata[password], htmldata[confirmpassword], and htmldata[email] parameters, as exploited in the wild in October 2013.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
vBulletin install/upgrade.php脚本安全漏洞
Vulnerability Description
vBulletin是美国Internet Brands和vBulletin Solutions公司共同开发的一款开源的商业Web论坛程序。 vBulletin 4.1和5版本中的install/upgrade.php脚本中存在安全漏洞。远程攻击者可借助customerid,htmldata[password],htmldata[confirmpassword]和htmldata[email]参数,利用该漏洞创建管理员账户。
CVSS Information
N/A
Vulnerability Type
N/A