Cross-site scripting (XSS) vulnerability in memberlist.php in Jelsoft vBulletin 2.0 rc 2 up to and including 2.2.4 allows remote malicious users to steal authentication credentials by injecting script into $letterbits.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jelsoft vbulletin 2.0_rc3 |
||
jelsoft vbulletin 2.2.0 |
||
jelsoft vbulletin 2.2.3 |
||
jelsoft vbulletin 2.2.4 |
||
jelsoft vbulletin 2.0_rc2 |
||
jelsoft vbulletin 2.2.1 |
||
jelsoft vbulletin 2.2.2 |