Family: CGI abuses --> Category: infos
vbulletin calendar SQL Injection Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Detect vBulletin Calendar SQL Injection
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP script that suffers from a SQL
A vulnerability has been discovered in the 'calendar.php' script that
allows unauthorized users to inject SQL commands through the 'eventid'
parameter. A possible hacker may use this flaw to gain the control of the
See also :
Upgrade to vBulletin 2.3.4 or later.
Medium / CVSS Base Score : 5
Click HERE for more information and discussions on this network vulnerability scan.