vbulletin security advisories
2 threat alerts tracking vulnerabilities and security advisories that affect vbulletin products.
Vulnios monitors vbulletin CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent vbulletin security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2016-6195 — vbulletin — vbulletin
SQL injection vulnerability in forumrunner/includes/moderation.php in vBulletin before 4.2.2 Patch Level 5 and 4.2.3 before Patch Level 1 allows remote attackers to execute arbitrary SQL commands via
criticalCVE-2016-6195Critical Vulnerability: CVE-2017-17672 — vbulletin — vbulletin
In vBulletin through 5.3.x, there is an unauthenticated deserialization vulnerability that leads to arbitrary file deletion and, under certain circumstances, code execution, because of unsafe usage of
criticalCVE-2017-17672
Track vbulletin exposure across your environment
Vulnios automatically cross-references your asset inventory against new vbulletin CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan