CVE-2025-46171 Information
Jul 24, 2025
cve
Description
vBulletin 3.8.7 is vulnerable to a denial-of-service condition via the misc.php?do=buddylist endpoint. If an authenticated user has a sufficiently large buddy list processing the list can consume excessive memory exhausting system resources and crashing the forum.
Reference
http://vbulletin.com https://github.com/oiyl/CVE-2025-46171
Related CNNVD
CNNVD-202507-3036 (Published: 2025-07-23)
Share on: