CVE-2010-1077

Directory traversal vulnerability in vbseo.php in Crawlability vBSEO plugin 3.1.0 for vBulletin allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the vbseourl parameter.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:vbseo:vbseo:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:vbulletin:vbulletin:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:13

Type Values Removed Values Added
References () http://packetstormsecurity.org/1002-exploits/vbseo-lfi.txt - () http://packetstormsecurity.org/1002-exploits/vbseo-lfi.txt -
References () http://www.exploit-db.com/exploits/11526 - Exploit () http://www.exploit-db.com/exploits/11526 - Exploit
References () http://www.vupen.com/english/advisories/2010/0442 - Vendor Advisory () http://www.vupen.com/english/advisories/2010/0442 - Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/56439 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/56439 -

Information

Published : 2010-03-23 19:30

Updated : 2024-11-21 01:13


NVD link : CVE-2010-1077

Mitre link : CVE-2010-1077

CVE.ORG link : CVE-2010-1077


JSON object : View

Products Affected

vbulletin

  • vbulletin

vbseo

  • vbseo
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')