1. Home
  2. Mapping Frameworks
  3. CVE Home
  4. n/a

CVE CVE-2013-6129 Mappings

The install/upgrade.php scripts in vBulletin 4.1 and 5 allow remote attackers to create administrative accounts via the customerid, htmldata[password], htmldata[confirmpassword], and htmldata[email] parameters, as exploited in the wild in October 2013.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2013-6129 n/a uncategorized T1136 Create Account
CVE-2013-6129 n/a uncategorized T1087 Account Discovery
CVE-2013-6129 n/a uncategorized T1190 Exploit Public-Facing Application