"vBulletin before 5.5.6pl1, 5.6.0 before 5.6.0pl1, and 5.6.1 before 5.6.1pl1 has incorrect access control."

https://cve.circl.lu/cve/CVE-2020-12720 …