Vulnerabilities > CVE-2001-0475 - Unspecified vulnerability in Jelsoft Vbulletin

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

jelsoft

NVD

Published: 2001-06-27

Updated: 2017-10-10

Summary

index.php in Jelsoft vBulletin does not properly initialize a PHP variable that is used to store template information, which allows remote attackers to execute arbitrary PHP code via special characters in the templatecache parameter.

Vulnerable Configurations

Part	Description	Count
Application	Jelsoft Jelsoft Vbulletin *	1

References

http://archives.neohapsis.com/archives/bugtraq/2001-03/0180.html
http://www.securityfocus.com/bid/2474
http://www.vbulletin.com/forum/showthread.php?s=b20af207b5b908ecf7a4ecf56fbe3cd3&threadid=10839
https://exchange.xforce.ibmcloud.com/vulnerabilities/6237