NOMISEC-psychoxploit/vbull

NOMISEC WORKING POC

Exploit for CVE-2019-16759 - vBulletin 5.x /ajax/render/widget_tabbedcontainer_tab_panel PHP remote code execution.

AI Analysis

This repository contains a functional exploit for CVE-2019-16759, a pre-authentication remote code execution vulnerability in vBulletin. The exploit is written in Python and targets vBulletin versions 5.0.0 through 5.5.4 by sending a crafted HTTP request to execute arbitrary commands.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 2

https://github.com/psychoxploit/vbull

Stars 0

Forks 2

Last Push Feb 29, 2020

Authors

psychoxploit xNot_Found GHz7

Vulnerability

CVE-2019-16759

vBulletin 5.x /ajax/render/widget_tabbedcontainer_tab_panel PHP remote code execution.

CRITICAL KEV

CVSS 9.8