KEV Entry
CVE-2025-48828
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2025-05-27 12:00 UTC
Timestamps
2025-05-27
2025-05-27
Scope
KEVIntel entry: Certain vBulletin versions might allow attackers to execute arbitrary PHP code by abusing Template Conditionals in the template engine. By crafting... | Affected: vBulletin / vBulletin | CVSS: 9.0 (CRITICAL) | EPSS: 0.48358 | Used in malware: unknown | Not yet in CISA KEV: True
References
- {'id': 'CVE-2025-48828', 'url': 'https://www.cve.org/CVERecord?id=CVE-2025-48828'}
- {'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2025-48828'}
895a9d47-c387-4996-8ca4-fa5ef41a0c6d
caeb2787-0d58-4236-9039-7c86c3e566f3
2026-06-23 14:03 UTC
2026-06-23 14:03 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| public_report | kevintel | successful_exploitation | 0.70 |
View details
|
- |