Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vbulletin vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6779
Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin allows remote malicious users to inject arbitrary web script or HTML via an SWF file that uses ActionScript to trigger execution of JavaScript.
Jelsoft Vbulletin 3.5.4
Jelsoft Vbulletin 3.6.0
Jelsoft Vbulletin 3.6.3
Jelsoft Vbulletin 3.6.4
Jelsoft Vbulletin 3.5.1
Jelsoft Vbulletin 3.5.2
Jelsoft Vbulletin 3.6.1
Jelsoft Vbulletin 3.6.2
1 EDB exploit
NA
CVE-2006-6040
Multiple cross-site scripting (XSS) vulnerabilities in admincp/index.php in Jelsoft vBulletin 3.6.x allow remote malicious users to inject arbitrary web script or HTML via (1) the prefs parameter in a buildnavprefs action or (2) the navprefs parameter in a savenavprefs action.
Jelsoft Vbulletin 3.6.0
Jelsoft Vbulletin 3.6.1
Jelsoft Vbulletin 3.6.2
Jelsoft Vbulletin 3.6.3
1 EDB exploit
NA
CVE-2006-5104
SQL injection vulnerability in global.php in Jelsoft vBulletin 2.x allows remote malicious users to execute arbitrary SQL commands via the templatesused parameter.
Jelsoft Vbulletin 2.3.8
Jelsoft Vbulletin 2.3.0
Jelsoft Vbulletin 2.3.2
Jelsoft Vbulletin 2.3.3
Jelsoft Vbulletin 2.3.4
1 EDB exploit
NA
CVE-2006-4272
Jelsoft vBulletin 3.5.4 allows remote malicious users to register multiple arbitrary users and cause a denial of service (resource consumption) via a large number of requests to register.php. NOTE: the vendor has disputed this vulnerability, stating "If you have the CAPTCHA ...
Jelsoft Vbulletin 3.5.4
NA
CVE-2006-4271
PHP remote file inclusion vulnerability in install/upgrade_301.php in Jelsoft vBulletin 3.5.4 allows remote malicious users to execute arbitrary PHP code via a URL in the step parameter. NOTE: the vendor has disputed this vulnerability, saying "The default vBulletin requires...
Jelsoft Vbulletin 3.5.4
NA
CVE-2006-4273
Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin 3.5.4 and 3.6.0 allows remote malicious users to inject arbitrary web script or HTML by uploading an attachment with a .pdf extension that contains JavaScript, which is processed as script by Microsoft Internet Explore...
Jelsoft Vbulletin 3.5.4
Jelsoft Vbulletin 3.6.0
1 EDB exploit
NA
CVE-2006-3253
Cross-site scripting (XSS) vulnerability in member.php in vBulletin 3.5.x allows remote malicious users to inject arbitrary web script or HTML via the u parameter. NOTE: the vendor has disputed this report, stating that they have been unable to replicate the issue and that "...
Jelsoft Vbulletin 3.5.2
Jelsoft Vbulletin 3.5.0 Beta 2
Jelsoft Vbulletin 3.5.1
Jelsoft Vbulletin 3.5.0 Rc3
Jelsoft Vbulletin 3.5.0 Rc2
Jelsoft Vbulletin 3.5.0 Beta 3
Jelsoft Vbulletin 3.5.3
Jelsoft Vbulletin 3.5.0 Beta 4
Jelsoft Vbulletin 3.5.0 Beta 1
Jelsoft Vbulletin 3.5.0
Jelsoft Vbulletin 3.5.0 Rc1
1 EDB exploit
NA
CVE-2006-2805
SQL injection vulnerability in VBulletin 3.0.10 allows remote malicious users to execute arbitrary SQL commands via the featureid parameter.
Jelsoft Vbulletin 3.0.10
1 EDB exploit
NA
CVE-2006-2335
Jelsoft vBulletin accepts uploads of Cascading Style Sheets (CSS) and processes them in a way that allows remote authenticated administrators to gain shell access by uploading a CSS file that contains PHP code, then selecting the file via the style chooser, which causes the PHP c...
Jelsoft Vbulletin 3.5.8
NA
CVE-2006-2066
Multiple cross-site scripting (XSS) vulnerabilities pm_popup.php in MKPortal 1.1 Rc1 and previous versions, as used with vBulletin 3.5.4 and previous versions, allow remote malicious users to inject arbitrary web script or HTML via the (1) u1, (2) m1, (3) m2, (4) m3, (5) m4 param...
Mkportal Mkportal 1.1 Rc1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »