The install/upgrade.php scripts in vBulletin 4.1 and 5 allow remote attackers to create administrative accounts via the customerid, htmldata[password], htmldata[confirmpassword], and htmldata[email] parameters, as exploited in the wild in October 2013.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Vbulletin | Vbulletin | 4.1 (including) | 4.1 (including) |
| Vbulletin | Vbulletin | 5.0.0 (including) | 5.0.0 (including) |
References
- http://www.net-security.org/secworld.php?id=15743
- http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/3991423-potential-vbulletin-exploit-vbulletin-4-1-vbulletin-5
- http://www.net-security.org/secworld.php?id=15743
- http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/3991423-potential-vbulletin-exploit-vbulletin-4-1-vbulletin-5