VULHUB ™

vBulletin is commercial web forum software written in PHP and back-ended by a MySQL database. It will run on most Linux and Unix variants, as well as Microsoft operating systems. Affected versions of vBulletin do not sufficiently sanitize user-supplied input before it is used to construct a SQL query, making it prone to SQL query injection. This issue only occurs when vBulletin has been configured to allow guest postings.

vBulletin is commercial web forum software written in PHP and back-ended by a MySQL database. It will run on most Linux and Unix variants, as well as Microsoft operating systems. Affected versions of vBulletin do not sufficiently sanitize user-supplied input before it is used to construct a SQL query, making it prone to SQL query injection. This issue only occurs when vBulletin has been configured to allow guest postings.