NuytsTech Security

CVE-2012-4686

by ·

SQL injection vulnerability in announcement.php in vBulletin 4.1.10 allows remote attackers to execute arbitrary SQL commands via the announcementid parameter.

Date published : 2012-08-28

http://www.securityfocus.com/bid/52897

http://archives.neohapsis.com/archives/bugtraq/2012-04/0042.html

Tags: