Common Vulnerabilities and Exposures
Exploitation in vBulletin allows remote command execution
Overview : vBulletin 5.x through 5.5.4 allows remote command execution via the widgetConfig[code] parameter in an ajax/render/widget_php routestring request. Affected Product(s) : vBulletin 5.x through ...