vBulletin 5.5.4 Remote Command Execution
Posted by deepcore on December 11, 2019 – 6:51 pm
This Metasploit module exploits vBulletin versions 5.x through 5.5.4 leveraging a remote command execution vulnerability via the widgetConfig[code] parameter in an ajax/render/widget_php routestring POST request.
Post a reply
You must be logged in to post a comment.