CVE-2019-17130

CVE-2019-17130

EPSS 1.0%

vBulletin through 5.5.4 mishandles external URLs within the /core/vb/vurl.php file and the /core/vb/vurl directories.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://forum.vbulletin.com/forum/vbulletin-announcements/vbulletin-announcements_aa/4423391-vbulletin-5-5-5-alpha-4-available-for-download