Two Critical 0-Day Remote Exploits for vBulletin Forum Disclosed Publicly

By [email protected] (Swati Khandelwal) Security researchers have discovered and disclosed details of two unpatched critical vulnerabilities in a popular internet forum software—vBulletin—one of which could allow a remote attacker to execute malicious code on the latest version of vBulletin application server.

vBulletin is a widely used proprietary Internet forum software package based on PHP and MySQL database server. It powers

Via:: Two Critical 0-Day Remote Exploits for vBulletin Forum Disclosed Publicly