2005-09-21 04:00:00
mitre
PUBLISHED
image.php in vBulletin 3.0.9 and earlier allows remote attackers with access to the administrator panel to upload arbitrary files via the upload action.