vBulletin through 5.5.4 mishandles custom avatars.
References
Link | Resource |
---|---|
https://forum.vbulletin.com/forum/vbulletin-announcements/vbulletin-announcements_aa/4423646-vbulletin-5-5-x-5-5-2-5-5-3-and-5-5-4-security-patch-level-2 | Vendor Advisory |
http://seclists.org/fulldisclosure/2019/Oct/9 | Third Party Advisory |
http://packetstormsecurity.com/files/154759/vBulletin-5.5.4-Remote-Code-Execution.html | Third Party Advisory |
Configurations
Information
Published : 2019-10-04 05:15
Updated : 2021-07-21 04:39
NVD link : CVE-2019-17132
Mitre link : CVE-2019-17132
JSON object : View
CWE
Products Affected
vbulletin
- vbulletin