Full Baslik: vBulletin 5.5.4 Remote Command Execution Exploit 
Kategori: web applications
Platform: php
This Metasploit module exploits vBulletin versions 5.x through 5.5.4 leveraging a remote command execution vulnerability via the widgetConfig[code] parameter in an ajax/render/widget_php routestring POST request.

# 0day.today @ http://0day.today/