SQL Injection Vulnerability in vBulletin 5.0.0 Beta 11, 5.0.0 Beta 28, and Earlier

CVE-2013-3522 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

SQL injection vulnerability in index.php/ajax/api/reputation/vote in vBulletin 5.0.0 Beta 11, 5.0.0 Beta 28, and earlier allows remote authenticated users to execute arbitrary SQL commands via the nodeid parameter.

Learn more about our Api Penetration Testing.