CVE-2014-2023CVE-2014-2023

Affected configuration(s):

cpe:/a:tapatalk:tapatalk:1.0.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:1.0.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:1.0.2::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:1.1.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:1.1.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:1.1.2::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:1.2.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:1.2.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:1.2.3::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:1.2.6::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:2.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:3.1.2::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:3.1.3::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:3.1.4::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:3.1.5::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:3.2.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:3.9.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:3.9.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:3.9.2::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:3.9.3::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.0.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.1.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.2.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.2.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.3.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.3.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.4.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.5.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.5.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.5.2::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.6.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.7.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.7.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.7.2::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.8.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.8.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:4.9.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:5.0.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:5.0.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:5.1.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:5.1.1::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:5.1.2::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:5.1.3::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:5.2.0::~~~vbulletin~~
cpe:/a:tapatalk:tapatalk:5.2.1::~~~vbulletin~~

Date published: 2017-10-26T16:29:00.373-04:00

Date last modified: 2017-11-15T15:34:34.637-05:00

CVSS Score: 7.5

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://packetstormsecurity.com/files/128854/vBulletin-4.x-Tapatalk-Blind-SQL-Injection.html

Summary: Multiple SQL injection vulnerabilities in the Tapatalk plugin 4.9.0 and earlier and 5.x through 5.2.1 for vBulletin allow remote attackers to execute arbitrary SQL commands via a crafted xmlrpc API request to (1) unsubscribe_forum.php or (2) unsubscribe_topic.php in mobiquo/functions/.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.