Arbitrary PHP Code Execution Vulnerability in vBulletin Forumdisplay.php

Arbitrary PHP Code Execution Vulnerability in vBulletin Forumdisplay.php

CVE-2005-0429 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Direct code injection vulnerability in forumdisplay.php in vBulletin 3.0 through 3.0.4, when showforumusers is enabled, allows remote attackers to execute inject arbitrary PHP commands via the comma parameter.

Learn more about our User Device Pen Test.