CVE-2016-6483

HIGH

vBulletin <4.2.2 PL6-5.2.2 PL1 - SSRF

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-6483. PoCs published by Dawid Golunski.

AI-analyzed exploit summary This exploit demonstrates a Server Side Request Forgery (SSRF) vulnerability in vBulletin versions <= 5.2.2, 4.2.3, and 3.8.9. It includes functionality to perform internal port scanning and execute remote commands via a Zabbix Agent if present on the target system.

Description

The media-file upload feature in vBulletin before 3.8.7 Patch Level 6, 3.8.8 before Patch Level 2, 3.8.9 before Patch Level 1, 4.x before 4.2.2 Patch Level 6, 4.2.3 before Patch Level 2, 5.x before 5.2.0 Patch Level 3, 5.2.1 before Patch Level 1, and 5.2.2 before Patch Level 1 allows remote attackers to conduct SSRF attacks via a crafted URL that results in a Redirection HTTP status code.

Exploits (1)

exploitdb WORKING POC

by Dawid Golunski · pythonwebappsphp

https://www.exploit-db.com/exploits/40225

View Code ZIP pw:eip

This exploit demonstrates a Server Side Request Forgery (SSRF) vulnerability in vBulletin versions <= 5.2.2, 4.2.3, and 3.8.9. It includes functionality to perform internal port scanning and execute remote commands via a Zabbix Agent if present on the target system.

Classification

Working Poc 95%

Attack Type

Ssrf

Complexity

Moderate

Reliability

Reliable

Target: vBulletin <= 5.2.2, <= 4.2.3, <= 3.8.9

No auth needed

Prerequisites: External IP address for the attacker · Access to start a listener on port 80/443 · Zabbix Agent installed and configured on the target for RCE

MITRE ATT&CK

T1189 - Drive-by Compromise T1090 - Proxy

devstral-2 · analyzed Feb 16, 2026 Full analysis →