Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vbulletin vbulletin 3.6 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2014-9469
Cross-site scripting (XSS) vulnerability in vBulletin 3.5.4, 3.6.0, 3.6.7, 3.8.7, 4.2.2, 5.0.5, and 5.1.3.
Vbulletin Vbulletin 3.8.7
Vbulletin Vbulletin 4.2.2
Vbulletin Vbulletin 5.0.5
Vbulletin Vbulletin 5.1.3
Vbulletin Vbulletin 3.6
Vbulletin Vbulletin 3.5.4
Vbulletin Vbulletin 3.6.7
435
VMScore
CVE-2008-3184
Multiple cross-site scripting (XSS) vulnerabilities in vBulletin 3.6.10 PL2 and previous versions, and 3.7.2 and previous versions 3.7.x versions, allow remote malicious users to inject arbitrary web script or HTML via (1) the PATH_INFO (PHP_SELF) or (2) the do parameter, as demo...
Vbulletin Vbulletin 3.6.3
Vbulletin Vbulletin 3.6.4
Vbulletin Vbulletin 3.7.1
Vbulletin Vbulletin 3.6.1
Vbulletin Vbulletin 3.6.10
Vbulletin Vbulletin 3.6.7
Vbulletin Vbulletin 3.6.8
Vbulletin Vbulletin 3.6.2
Vbulletin Vbulletin 3.6.9
Vbulletin Vbulletin 3.7.0
Vbulletin Vbulletin 3.6
Vbulletin Vbulletin 3.6.5
Vbulletin Vbulletin 3.6.6
Vbulletin Vbulletin 3.7.2
1 EDB exploit
685
VMScore
CVE-2006-6779
Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin allows remote malicious users to inject arbitrary web script or HTML via an SWF file that uses ActionScript to trigger execution of JavaScript.
Jelsoft Vbulletin 3.5.4
Jelsoft Vbulletin 3.6.0
Jelsoft Vbulletin 3.6.3
Jelsoft Vbulletin 3.6.4
Jelsoft Vbulletin 3.5.1
Jelsoft Vbulletin 3.5.2
Jelsoft Vbulletin 3.6.1
Jelsoft Vbulletin 3.6.2
1 EDB exploit
685
VMScore
CVE-2006-6040
Multiple cross-site scripting (XSS) vulnerabilities in admincp/index.php in Jelsoft vBulletin 3.6.x allow remote malicious users to inject arbitrary web script or HTML via (1) the prefs parameter in a buildnavprefs action or (2) the navprefs parameter in a savenavprefs action.
Jelsoft Vbulletin 3.6.0
Jelsoft Vbulletin 3.6.1
Jelsoft Vbulletin 3.6.2
Jelsoft Vbulletin 3.6.3
1 EDB exploit
755
VMScore
CVE-2007-1292
SQL injection vulnerability in inlinemod.php in Jelsoft vBulletin prior to 3.5.8, and prior to 3.6.5 in the 3.6.x series, might allow remote authenticated users to execute arbitrary SQL commands via the postids parameter. NOTE: the vendor states that the attack is feasible only i...
Jelsoft Vbulletin 3.6.0
Jelsoft Vbulletin 3.6.5
Jelsoft Vbulletin
Jelsoft Vbulletin 3.6.1
Jelsoft Vbulletin 3.6.2
Jelsoft Vbulletin 3.6.3
Jelsoft Vbulletin 3.6.4
1 EDB exploit
312
VMScore
CVE-2007-2909
Cross-site scripting (XSS) vulnerability in calendar.php in Jelsoft vBulletin 3.6.x prior to 3.6.7 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to the vb_calendar366_xss_fix_plugin.xml update.
Jelsoft Vbulletin
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started