6.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
50.3%
Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin before 3.6.7 PL1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to the vb_367_xss_fix_plugin.xml update, a related issue to CVE-2007-2909.
osvdb.org/35157
www.vbulletin.com/forum/showthread.php?postid=1355012