CVE-2025-48828HIGH 8.1EPSS p98.7%

CVE-2025-48828CVE-2025-48828

Description

Certain vBulletin versions might allow attackers to execute arbitrary PHP code by abusing Template Conditionals in the template engine. By crafting template code in an alternative PHP function invocation syntax, such as the "var_dump"("test") syntax, attackers can bypass security checks and execute arbitrary PHP code, as exploited in the wild in May 2025.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS48.36% probability of exploitation · percentile 98.7% · 2026-06-19T12:03:05Z
Published2025-05-27
Last modified2025-06-25

Underlying weaknesses· 1

CWE-424

References

  1. https://karmainsecurity.com/dont-call-that-protected-method-vbulletin-rce
  2. https://kevintel.com/CVE-2025-48828
  3. https://blog.kevintel.com/vbulletin-replaceadtemplate-kev/

1

TypeTargetConfidenceTier
WeaknessImproper Protection of Alternate Pathcwe-4240%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-48827
CVE
CVE-2025-44022
CVE
vBulletin PHP Module Remote Code Execution Vulnerability
CVE
CVE-2025-54815
CVE
CVE-2026-24425
CVE
CVE-2025-71281
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.