CVE-2013-3528

Vanilla Forums <2.0.18.8 - Code Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-3528. PoCs published by EgiX.

AI-analyzed exploit summary This is a detailed writeup describing a PHP object injection vulnerability in Vanilla Forums <= 2.0.18.5, where unsanitized user input in the 'Messages' and 'Response' POST parameters leads to arbitrary object injection via the 'Gdn_Format::Unserialize' method. The vulnerability can be exploited for Local File Inclusion (LFI) by manipulating the 'Gdn_Module::__toString' method, particularly on PHP versions < 5.3.4 due to null-byte injection requirements.

Description

Unspecified vulnerability in the update check in Vanilla Forums before 2.0.18.8 has unspecified impact and remote attack vectors, related to "object injection."

Exploits (1)

exploitdb WRITEUP VERIFIED
by EgiX · textwebappsphp
https://www.exploit-db.com/exploits/29512

This is a detailed writeup describing a PHP object injection vulnerability in Vanilla Forums <= 2.0.18.5, where unsanitized user input in the 'Messages' and 'Response' POST parameters leads to arbitrary object injection via the 'Gdn_Format::Unserialize' method. The vulnerability can be exploited for Local File Inclusion (LFI) by manipulating the 'Gdn_Module::__toString' method, particularly on PHP versions < 5.3.4 due to null-byte injection requirements.

Classification
Writeup 100%
Attack Type
Deserialization
Complexity
Moderate
Reliability
Reliable
Target: Vanilla Forums <= 2.0.18.5
Auth required
Prerequisites: Access to a valid session with a transient key · PHP version < 5.3.4 for LFI via null-byte injection
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

EPSS 0.0567
EPSS Percentile 92.0%

Details

Status published
Products (35)
vanillaforums/vanilla 2.0.1
vanillaforums/vanilla 2.0.2
vanillaforums/vanilla 2.0.3
vanillaforums/vanilla 2.0.4
vanillaforums/vanilla 2.0.5
vanillaforums/vanilla 2.0.6
vanillaforums/vanilla 2.0.7
vanillaforums/vanilla 2.0.8
vanillaforums/vanilla 2.0.9
vanillaforums/vanilla 2.0.10
... and 25 more
Published May 10, 2013
Tracked Since Feb 18, 2026