VWE-2019-5416

This page is a chapter in Info Known Vulnerabilities

Common Name None
VWE-ID VWE-2019-5416
Related Report None
Severity MEDIUM
Exploit Difficulty EASY
Platform vBulletin 4.x
Description Permissions Escalation. Wiki page contents are rendered using the viewing user's parser-related permissions for wiki comments that they post, rather than the appropriate parser-related area settings for wiki pages. The issue affects early downloads of 4.1.0 Beta 4 build 001 only.

Discovered October 13, 2019
Resolved October 13, 2019
Patches Available 4.1.0 Beta 4 build 002
The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.

This page has been seen 419,266 times.

- Created by
  pegasus
  
  View Public Profile
  
  Show contributions to this page
  
  Send a private message to pegasus
  
  Visit pegasus's homepage!
  on February 5, 2020

Welcome to VaultWiki.org, home of the wiki add-on for vBulletin and XenForo!

VWE-2019-5416

Users Browsing This Page (0 members, 1 guests)

Common Name	None
VWE-ID	VWE-2019-5416
Related Report	None
Severity	MEDIUM
Exploit Difficulty	EASY
Platform	vBulletin 4.x
Description	Permissions Escalation. Wiki page contents are rendered using the viewing user's parser-related permissions for wiki comments that they post, rather than the appropriate parser-related area settings for wiki pages. The issue affects early downloads of 4.1.0 Beta 4 build 001 only.
Discovered	October 13, 2019
Resolved	October 13, 2019
Patches Available	4.1.0 Beta 4 build 002

Welcome to VaultWiki.org, home of the wiki add-on for vBulletin and XenForo!

Sub-Categories of VWE-2019-5416

#

XSS 4.1.0 Beta 4

Users Browsing This Page (0 members, 1 guests)