vbulletin vbulletin 3.6.7 vulnerabilities and exploits

(subscribe to this query)

4.3

CVSSv2

Cross-site scripting (XSS) vulnerability in vBulletin 3.5.4, 3.6.0, 3.6.7, 3.8.7, 4.2.2, 5.0.5, and 5.1.3.

Vbulletin Vbulletin 3.8.7 Vbulletin Vbulletin 4.2.2 Vbulletin Vbulletin 5.0.5 Vbulletin Vbulletin 5.1.3 Vbulletin Vbulletin 3.6 Vbulletin Vbulletin 3.5.4 Vbulletin Vbulletin 3.6.7

4.3

CVSSv2

Multiple cross-site scripting (XSS) vulnerabilities in vBulletin 3.6.10 PL2 and previous versions, and 3.7.2 and previous versions 3.7.x versions, allow remote malicious users to inject arbitrary web script or HTML via (1) the PATH_INFO (PHP_SELF) or (2) the do parameter, as demo...

Vbulletin Vbulletin 3.6.3 Vbulletin Vbulletin 3.6.4 Vbulletin Vbulletin 3.7.1 Vbulletin Vbulletin 3.6.1 Vbulletin Vbulletin 3.6.10 Vbulletin Vbulletin 3.6.7 Vbulletin Vbulletin 3.6.8 Vbulletin Vbulletin 3.6.2 Vbulletin Vbulletin 3.6.9 Vbulletin Vbulletin 3.7.0 Vbulletin Vbulletin 3.6 Vbulletin Vbulletin 3.6.5 Vbulletin Vbulletin 3.6.6 Vbulletin Vbulletin 3.7.2

1 EDB exploit

3.5

CVSSv2

Cross-site scripting (XSS) vulnerability in calendar.php in Jelsoft vBulletin 3.6.x prior to 3.6.7 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to the vb_calendar366_xss_fix_plugin.xml update.

Jelsoft Vbulletin

4.3

CVSSv2

Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin prior to 3.6.7 PL1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to the vb_367_xss_fix_plugin.xml update, a related issue to CVE-2007-2909.

Jelsoft Vbulletin

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook