VBulletin before 5.5.6pl1 Incorrect Authorization Vulnerability

Published on June 29th, 2020
Summary

VBulletin before 5.5.6pl1 suffers from incorrect authorization vulnerability

Credit:

The information has been provided by Photubias

The original article can be found at:https://forum.vbulletin.com/forum/vbulletin-announcements/vbulletin-announcements_aa/4440032-vbulletin-5-5-6-5-6-0-5-6-1-security-patch-level-1


Details

vBulletin before 5.5.6pl1, 5.6.0 before 5.6.0pl1, and 5.6.1 before 5.6.1pl1 has incorrect access control.

 

Vulnerable Systems:

VBulletin before 5.5.6pl1

VBulletin 5.6.0 before 5.6.0pl1

VBulletin 5.6.1 before 5.6.1pl1

 

CVE Information:

CVE-2020-12720

 

Disclosure Timeline:
Published Date:5/7/2020

Categories: FeaturedNews

Related Posts

News

Zulip Desktop before 5.2.0 Improper Certificate Validation Vulnerability

News

Zoneplayer 2.0.1.3 Insufficient Information Vulnerability

News

WSO2 API Manager 3.0.0 and earlier Improper Restriction of XML External Entity Reference Vulnerability