Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vbulletin vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2006-6779
Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin allows remote malicious users to inject arbitrary web script or HTML via an SWF file that uses ActionScript to trigger execution of JavaScript.
Jelsoft Vbulletin 3.5.4
Jelsoft Vbulletin 3.6.0
Jelsoft Vbulletin 3.6.3
Jelsoft Vbulletin 3.6.4
Jelsoft Vbulletin 3.5.1
Jelsoft Vbulletin 3.5.2
Jelsoft Vbulletin 3.6.1
Jelsoft Vbulletin 3.6.2
1 EDB exploit
685
VMScore
CVE-2006-6040
Multiple cross-site scripting (XSS) vulnerabilities in admincp/index.php in Jelsoft vBulletin 3.6.x allow remote malicious users to inject arbitrary web script or HTML via (1) the prefs parameter in a buildnavprefs action or (2) the navprefs parameter in a savenavprefs action.
Jelsoft Vbulletin 3.6.0
Jelsoft Vbulletin 3.6.1
Jelsoft Vbulletin 3.6.2
Jelsoft Vbulletin 3.6.3
1 EDB exploit
755
VMScore
CVE-2006-5104
SQL injection vulnerability in global.php in Jelsoft vBulletin 2.x allows remote malicious users to execute arbitrary SQL commands via the templatesused parameter.
Jelsoft Vbulletin 2.3.8
Jelsoft Vbulletin 2.3.0
Jelsoft Vbulletin 2.3.2
Jelsoft Vbulletin 2.3.3
Jelsoft Vbulletin 2.3.4
1 EDB exploit
668
VMScore
CVE-2006-4272
Jelsoft vBulletin 3.5.4 allows remote malicious users to register multiple arbitrary users and cause a denial of service (resource consumption) via a large number of requests to register.php. NOTE: the vendor has disputed this vulnerability, stating "If you have the CAPTCHA ...
Jelsoft Vbulletin 3.5.4
668
VMScore
CVE-2006-4271
PHP remote file inclusion vulnerability in install/upgrade_301.php in Jelsoft vBulletin 3.5.4 allows remote malicious users to execute arbitrary PHP code via a URL in the step parameter. NOTE: the vendor has disputed this vulnerability, saying "The default vBulletin requires...
Jelsoft Vbulletin 3.5.4
685
VMScore
CVE-2006-4273
Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin 3.5.4 and 3.6.0 allows remote malicious users to inject arbitrary web script or HTML by uploading an attachment with a .pdf extension that contains JavaScript, which is processed as script by Microsoft Internet Explore...
Jelsoft Vbulletin 3.5.4
Jelsoft Vbulletin 3.6.0
1 EDB exploit
265
VMScore
CVE-2006-3253
Cross-site scripting (XSS) vulnerability in member.php in vBulletin 3.5.x allows remote malicious users to inject arbitrary web script or HTML via the u parameter. NOTE: the vendor has disputed this report, stating that they have been unable to replicate the issue and that "...
Jelsoft Vbulletin 3.5.2
Jelsoft Vbulletin 3.5.0 Beta 2
Jelsoft Vbulletin 3.5.1
Jelsoft Vbulletin 3.5.0 Rc3
Jelsoft Vbulletin 3.5.0 Rc2
Jelsoft Vbulletin 3.5.0 Beta 3
Jelsoft Vbulletin 3.5.3
Jelsoft Vbulletin 3.5.0 Beta 4
Jelsoft Vbulletin 3.5.0 Beta 1
Jelsoft Vbulletin 3.5.0
Jelsoft Vbulletin 3.5.0 Rc1
1 EDB exploit
505
VMScore
CVE-2006-2805
SQL injection vulnerability in VBulletin 3.0.10 allows remote malicious users to execute arbitrary SQL commands via the featureid parameter.
Jelsoft Vbulletin 3.0.10
1 EDB exploit
578
VMScore
CVE-2006-2335
Jelsoft vBulletin accepts uploads of Cascading Style Sheets (CSS) and processes them in a way that allows remote authenticated administrators to gain shell access by uploading a CSS file that contains PHP code, then selecting the file via the style chooser, which causes the PHP c...
Jelsoft Vbulletin 3.5.8
435
VMScore
CVE-2006-2066
Multiple cross-site scripting (XSS) vulnerabilities pm_popup.php in MKPortal 1.1 Rc1 and previous versions, as used with vBulletin 3.5.4 and previous versions, allow remote malicious users to inject arbitrary web script or HTML via the (1) u1, (2) m1, (3) m2, (4) m3, (5) m4 param...
Mkportal Mkportal 1.1 Rc1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »