This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:vbulletin:vbulletin:5.0.5
Detail
VendorVbulletinFirst view 2014-07-25
ProductVbulletinLast view2017-12-13
Version5.0.5TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:vbulletin:vbulletin

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
7.52017-12-13CVE-2017-17672NetworkLowNone Requ...
42017-09-19CVE-2015-3419NetworkLowRequires ...
4.32017-08-28CVE-2014-9469NetworkMediumNone Requ...
52017-04-06CVE-2017-7569NetworkLowNone Requ...
7.52015-11-24CVE-2015-7808NetworkLowNone Requ...
Hide | Show 2 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
3.52014-10-24CVE-2014-2021NetworkMediumRequires ...
7.52014-07-25CVE-2014-5102NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
33% (2)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
33% (2)CWE-20Improper Input Validation
16% (1)CWE-502Deserialization of Untrusted Data
16% (1)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...

SAINT Exploits

DescriptionLink
vBulletin decodeArguments serialized object vulnerabilityMore info here

Snort® IPS/IDS

DateDescription
2016-03-14vBulletin decodeArguments PHP object injection attempt
RuleID : 36763 - Type : SERVER-WEBAPP - Revision : 2