vBulletin < 3.0.7 misc.php PHP Code Injection

medium Nessus Network Monitor Plugin ID 2642

Synopsis

The remote host is vulnerable to an HTML injection attack.

Description

The remote host is running a version of vBulletin, a forum application implemented in PHP, that is vulnerable to a flaw in the misc.php script. The flaw allows a remote attacker the ability to execute PHP code on the server. An attacker exploiting this flaw would pass malformed data to the 'template' parameter of the misc.php script.

Solution

Upgrade to version 3.0.7 or higher.

Plugin Details

Severity: Medium

ID: 2642

Family: CGI

Published: 2/22/2005

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: High

Score: 7.3

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 5.6

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 6.2

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:jelsoft:vbulletin

Exploitable With

Metasploit (vBulletin misc.php Template Name Arbitrary Code Execution)

Reference Information

CVE: CVE-2005-0511

BID: 12622

Detections

Analytics