Lucene search
K

5 matches found

NVD
NVD
added 2014/10/25 12:55 a.m.23 views

CVE-2014-2021

Cross-site scripting XSS vulnerability in admincp/apilog.php in vBulletin 4.2.2 and earlier, and 5.0.x through 5.0.5 allows remote authenticated users to inject arbitrary web script or HTML via a crafted XMLRPC API request, as demonstrated using the client name...

3.5CVSS5.2AI score0.03389EPSS
Exploits4References7
CVE
CVE
added 2014/10/25 12:0 a.m.63 views

CVE-2014-2021

CVE-2014-2021 describes a persistent cross-site scripting (XSS) vulnerability in vBulletin’s AdminCP/ApiLog via the XMLRPC API. Affected products are vBulletin 4.x and 5.x (to date), with testing/verification noting versions up to 4.2.2 and 5.0.x, including 5.0.5. The root cause is improper sanit...

3.5CVSS7AI score0.03389EPSS
Exploits4References7Affected Software1
Packet Storm
Packet Storm
added 2014/10/12 12:0 a.m.54 views

vBulletin 5.x / 4.x Persistent Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2014-2021 - vBulletin 5.x/4.x - persistent XSS in AdminCP/ApiLog via xmlrpc API post-auth ============================================================================ ==================== Overview - -------- date : 10/12/2014 cvss : 4.6...

3.5CVSS9.6AI score0.04145EPSS
Exploits7
exploitpack
exploitpack
added 2014/10/12 12:0 a.m.85 views

vBulletin 4.x5.x - AdminCPApiLog via xmlrpc API (Authenticated) Persistent Cross-Site Scripting

vBulletin 4.x5.x - AdminCPApiLog via xmlrpc API Authenticated Persistent Cross-Site Scripting CVE-2014-2021 - vBulletin 5.x/4.x - persistent XSS in AdminCP/ApiLog via xmlrpc API post-auth ================================================================================================ Overview...

7.5CVSS0.2AI score0.04145EPSS
Exploits7
Exploit DB
Exploit DB
added 2014/10/12 12:0 a.m.56 views

vBulletin 4.x/5.x - AdminCP/ApiLog via xmlrpc API (Authenticated) Persistent Cross-Site Scripting

CVE-2014-2021 - vBulletin 5.x/4.x - persistent XSS in AdminCP/ApiLog via xmlrpc API post-auth ================================================================================================ Overview -------- date : 10/12/2014 cvss : 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P base cwe : 79 vendor : vBulletin...

3.5CVSS9.6AI score0.03389EPSS
Exploits4
Rows per page
Query Builder