vBulletin before 5.5.6pl1, 5.6.0 before 5.6.0pl1, and 5.6.1 before 5.6.1pl1 has incorrect access control.
References
Link | Resource |
---|---|
https://forum.vbulletin.com/forum/vbulletin-announcements/vbulletin-announcements_aa/4440032-vbulletin-5-6-1-security-patch-level-1 | Vendor Advisory |
http://packetstormsecurity.com/files/157716/vBulletin-5.6.1-SQL-Injection.html | Third Party Advisory VDB Entry |
http://packetstormsecurity.com/files/157904/vBulletin-5.6.1-SQL-Injection.html | Third Party Advisory VDB Entry |
https://attackerkb.com/topics/RSDAFLik92/cve-2020-12720-vbulletin-incorrect-access-control | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2020-05-07 17:15
Updated : 2022-04-27 08:04
NVD link : CVE-2020-12720
Mitre link : CVE-2020-12720
JSON object : View
CWE
Products Affected
vbulletin
- vbulletin