member2.php in vBulletin 2.2.9 and previous versions does not properly restrict the $perpage variable to be an integer, which causes an error message to be reflected back to the user without quoting, which facilitates cross-site scripting (XSS) and possibly other attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jelsoft vbulletin 2.0.2 |
||
jelsoft vbulletin 2.2.0 |
||
jelsoft vbulletin 2.2.1 |
||
jelsoft vbulletin 2.2.2 |
||
jelsoft vbulletin 2.0.1 |
||
jelsoft vbulletin 2.2.3 |
||
jelsoft vbulletin 2.2.5 |
||
jelsoft vbulletin 2.2.7 |
||
jelsoft vbulletin 2.2.8 |
||
jelsoft vbulletin 2.2.9 |
||
jelsoft vbulletin 2.2.9_can |
||
jelsoft vbulletin 2.0 |
||
jelsoft vbulletin 2.2.4 |
||
jelsoft vbulletin 2.2.6 |