CVE-2016-6483

The media-file upload feature in vBulletin before 3.8.7 Patch Level 6, 3.8.8 before Patch Level 2, 3.8.9 before Patch Level 1, 4.x before 4.2.2 Patch Level 6, 4.2.3 before Patch Level 2, 5.x before 5.2.0 Patch Level 3, 5.2.1 before Patch Level 1, and 5.2.2 before Patch Level 1 allows remote attackers to conduct SSRF attacks via a crafted URL that results in a Redirection HTTP status code.

Published: Sep 2, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-6483
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.6
AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

CWEs:

CWE-918

Affected Software
References

Software	From	Fixed in
vbulletin / vbulletin	5.2.1	5.2.1.x
vbulletin / vbulletin	3.8.9	3.8.9.x
vbulletin / vbulletin	3.8.7	3.8.7.x
vbulletin / vbulletin	4.2.3	4.2.3.x
vbulletin / vbulletin	5.2.0	5.2.0.x
vbulletin / vbulletin	5.2.2	5.2.2.x
vbulletin / vbulletin	4.2.2	4.2.2.x
vbulletin / vbulletin	3.8.8	3.8.8.x

http://legalhackers.com/advisories/vBulletin-SSRF-Vulnerability-Exploit.txt
http://www.securityfocus.com/bid/92350
http://www.securitytracker.com/id/1036553
http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/4349548-security-patch-vbulletin-3-8-7-3-8-8-3-8-9-3-8-10-beta
http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/4349549-security-patch-vbulletin-4-2-2-4-2-3-4-2-4-beta
http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/4349551-security-patch-vbulletin-5-2-0-5-2-1-5-2-2
https://www.exploit-db.com/exploits/40225/

Vulnerability Database

289,697

CVE-2016-6483