cve/CVE-2013-6129.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

739 B

Raw Permalink Blame History

CVE-2013-6129

Description

The install/upgrade.php scripts in vBulletin 4.1 and 5 allow remote attackers to create administrative accounts via the customerid, htmldata[password], htmldata[confirmpassword], and htmldata[email] parameters, as exploited in the wild in October 2013.

POC

Reference

http://www.net-security.org/secworld.php?id=15743

Github

https://github.com/vpereira/smash_data

739 B Raw Permalink Blame History

CVE-2013-6129

Description

POC

Reference

Github

739 B

Raw Permalink Blame History