Vulnerabilities > CVE-2013-3528 - PHP Code Injection vulnerability in Vanillaforums Vanilla
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Unspecified vulnerability in the update check in Vanilla Forums before 2.0.18.8 has unspecified impact and remote attack vectors, related to "object injection."
Vulnerable Configurations
Exploit-Db
description | Vanilla Forums 2.0 - 2.0.18.5 (class.utilitycontroller.php) - PHP Object Injection Vulnerability. CVE-2013-2749,CVE-2013-3528. Webapps exploit for php platform |
id | EDB-ID:29512 |
last seen | 2016-02-03 |
modified | 2013-11-08 |
published | 2013-11-08 |
reporter | EgiX |
source | https://www.exploit-db.com/download/29512/ |
title | Vanilla Forums 2.0 - 2.0.18.5 class.utilitycontroller.php - PHP Object Injection Vulnerability |
Packetstorm
data source | https://packetstormsecurity.com/files/download/123529/KIS-2013-09.txt |
id | PACKETSTORM:123529 |
last seen | 2016-12-05 |
published | 2013-10-07 |
reporter | EgiX |
source | https://packetstormsecurity.com/files/123529/Vanilla-Forums-2.0.18.5-Local-File-Inclusion.html |
title | Vanilla Forums 2.0.18.5 Local File Inclusion |
Seebug
bulletinFamily | exploit |
description | No description provided by source. |
id | SSV:83010 |
last seen | 2017-11-19 |
modified | 2014-07-01 |
published | 2014-07-01 |
reporter | Root |
source | https://www.seebug.org/vuldb/ssvid-83010 |
title | Vanilla Forums 2.0 - 2.0.18.5 (class.utilitycontroller.php) - PHP Object Injection Vulnerability |