Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Fri, 24 Apr 2015 17:43:20 -0300
From: Patrick William <>
Subject: CVE Request: vBulletin 5 - Private Messages Input Validation Failure


I need to request a CVE for vBulletin 5.


Due to an input validation failure, it is possible for a malicious user 
to inject messages into existing conversations without authorization.



RACK911 Labs
1110 Palms Airport Drive
Suite 110
Las Vegas, NV 89119
Software Security Auditing

Follow us @

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.