CVE-2018-18903
N/A
N/A
Summary
Vanilla 2.6.x before 2.6.4 allows remote code execution.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://srcincite.io/blog/2018/10/02/old-school-pwning-with-new-school-tricks-vanilla-forums-remote-code-execution.html
- https://github.com/vanilla/vanilla/releases/tag/Vanilla_2.6.4
- https://open.vanillaforums.com/discussion/36771/security-update-vanilla-2-6-4
References
- https://srcincite.io/blog/2018/10/02/old-school-pwning-with-new-school-tricks-vanilla-forums-remote-code-execution.html
- https://github.com/vanilla/vanilla/releases/tag/Vanilla_2.6.4
- https://open.vanillaforums.com/discussion/36771/security-update-vanilla-2-6-4
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.