CVE-2005-0429

Publication date

2005-02-15 05:00:00

Family

mitre

State

PUBLISHED

Description

Direct code injection vulnerability in forumdisplay.php in vBulletin 3.0 through 3.0.4, when showforumusers is enabled, allows remote attackers to execute inject arbitrary PHP commands via the comma parameter.