Web Application Firewall

vBulletin 5.5.4 allows Two SQL Injection Vulnerabilities

Overview :

vBulletin 5.5.4 allows SQL Injection via the ajax/api/hook/getHookList or ajax/api/widget/getWidgetList where parameter.

Affected Product(s) :

vBulletin 5.5.4

Vulnerability Details :

CVE ID :

CVE-2019-17271

1) User input passed through keys of the “where” parameter to
the “ajax/api/hook/getHookList” endpoint is not properly validated
before being used in an SQL query. This can be exploited to e.g.
read sensitive data from the database through in-band SQL injection
attacks. Successful exploitation of this vulnerability requires an
user account with the “canadminproducts” or “canadminstyles” permission.2) User input passed through keys of the “where” parameter to
the “ajax/api/widget/getWidgetList” endpoint is not properly validated
before being used in an SQL query. This can be exploited to e.g.
read sensitive data from the database through time-based SQL injection
attacks. Successful exploitation of this vulnerability requires an
user account with the “canusesitebuilder” permission.

Solution :
Apply the vendor Security Patch Level 2 or upgrade to version 5.5.5 or
later.

vBulletin 5.5.4 allows Two SQL Injection Vulnerabilities

Recent Posts

Latest Spring Vulnerabilities Exploitation – CVE-2022-22965

10+ Best Free SSL Certificate Providers 2023

Latest Spring Vulnerabilities Exploitation – CVE-2022-22965

Follow Us

zzcms 2018 template_user.php ml/title code injection

ZyXEL VPN2S 1.12 Web Server path traversal

Zyxel VPN2S 1.12 CGI Program os command injection

Zyxel USG/USG Flex/Zywall/ATP/VPN up to 4.64 Web-based Management Interface improper authentication

ZyXEL GS1900-8 2.60 LLDP Packet cross site scripting

Zynamics BinDiff up to 6 i64 File use after free

Web Application Firewall Solution

CVE-2022-22486 : IBM TIVOLI WORKLOAD SCHEDULER 9.4/9.5/10.1 XML EXTERNAL ENTITY REFERENCE

CVE-2023-24997 : APACHE INLONG UP TO 1.5.0 DESERIALIZATION

CVE-2022-37708 : DOCKER 20.10.15 BUILD FD82621 PERMISSION