Google Search: Powered.by:.vBulletin.Version …3.0.6
sfd rates this entry 6 out of 10.
Submitted: 2005-03-20 15:43:33
Added by: sfd
vBulletin is reported prone to an arbitrary PHP script code execution vulnerability. The issue is reported to exist due to a lack of sufficient input sanitization performed on user-supplied data before this data is included in a dynamically generated scripthttp://www.securityfocus.com/bid/12622/info/
2005-03-21 21:02:14 (stevenrh): Results 1 – 10 of about 4,170,000 for Powered.by:.vBulletin.Version …3.0.6. (0.17 seconds) I’d hate to see what happens when someone can plug some code in there…
…just another reason that perl/cgi may be a better path to follow (for the time being)
2005-03-28 10:33:07 (algorion): Has anyone been able to work with this yet? i really need to get some SQL to go into this but i dont know the vbulletin system at all.