VYPR
Unrated severityNVD Advisory· Published May 27, 2008· Updated Jun 16, 2026

CVE-2008-2460

CVE-2008-2460

Description

SQL injection vulnerability in faq.php in vBulletin 3.7.0 Gold allows remote attackers to execute arbitrary SQL commands via the q parameter in a search action.

Affected products

2
  • Jelsoft/Vbulletin2 versions
    cpe:2.3:a:vbulletin:vbulletin:3.7.0:gold:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:vbulletin:vbulletin:3.7.0:gold:*:*:*:*:*:*
    • (no CPE)range: 3.7.0 Gold

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.