The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.
Common Name None VWE-ID VWE-2019-5416 Related Report None Severity MEDIUM Exploit Difficulty EASY Platform vBulletin 4.x Description Permissions Escalation. Wiki page contents are rendered using the viewing user's parser-related permissions for wiki comments that they post, rather than the appropriate parser-related area settings for wiki pages. The issue affects early downloads of 4.1.0 Beta 4 build 001 only.
Discovered October 13, 2019 Resolved October 13, 2019 Patches Available 4.1.0 Beta 4 build 002
This page has been seen 419,254 times.
-
-
Created by on
-