vBulletin 5.1.2 SQL injection

Description
  • vBulletin 5.0.4, 5.0.5, 5.1.0, 5.1.1, and 5.1.2 are vulnerable to an SQL injection vulnerability, which may allow an attacker to execute malicious SQL statements that control a web application's database server.
Remediation
  • Upgrade to the latest version of vBulletin.
References