2006-06-03 10:00:00
mitre
PUBLISHED
SQL injection vulnerability in VBulletin 3.0.10 allows remote attackers to execute arbitrary SQL commands via the featureid parameter.