VBulletin SQLI

CVE-2020-12720 CWE-94 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H SQL Injection OWASP 2013-A1 OWASP 2017-A1 PCI v3.2- OWASP PC-C3 CAPEC-66 HIPAA-89 ISO27001-A.14.2.5 WASC-19 WSTG-INPV-05

CVE-2020-12720 is an access-related vulnerability that was found in vBulletin software.

Mitigation / Precaution

In order to patch this vulnerability, please install the official patch made by the vendor available for supported, vulnerable instances.

Latest Articles