CVE-2013-3522

Publication date

2013-05-10 21:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in index.php/ajax/api/reputation/vote in vBulletin 5.0.0 Beta 11, 5.0.0 Beta 28, and earlier allows remote authenticated users to execute arbitrary SQL commands via the nodeid parameter.