28 matches found
EUVD-2012-6515
Malware in sbrugna...
EUVD-2012-6526
Malware in sbrugna...
vBulletin 4.2.3 vBSecurity 2.2.2 Pro Open Redirection
Exploit Title : vBulletin 4.2.3 vBSecurity v2.2.2 Pro Open Redirection Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 01/03/2019 Vendor Homepage : vbulletin.com dragonbyte-tech.com Software Information Link : dragonbyte-tech.com/store/vbsecurity.123/ Software...
DragonByte Technologies vBDownloads for vBulletin Cross-Site Scripting Vulnerability
DragonByte Technologies vBDownloads for vBulletin is a download module for vBulletin open source commercial web forum program from DragonByte Technologies, Scotland. A cross-site scripting vulnerability exists in the downloads/actions/editdownload.php file in DragonByte Technologies vBDownloads f...
DragonByte Technologies Forumon RPG for vBulletin Cross-Site Scripting Vulnerability
DragonByte Technologies Forumon RPG for vBulletin is a forum role-playing module for vBulletin, the open-source commercial Web forum program, from DragonByte Technologies of Scotland. A cross-site scripting vulnerability exists in DragonByte Technologies Forumon RPG for vBulletin version 1.0.7. A...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the reason parameter in 1 actions/nominatemedal.php or 2 actions/requestmedal.php...
Cross site scripting
Cross-site scripting XSS vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbitrary web script or HTML via the mirrors parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the Shout Reports in the DragonByte Technologies vBShout module before 6.0.6 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the 1 reportreason parameter in actions/doreport.php or 2 modnotes parameter in...
CVE-2012-6671
Multiple cross-site scripting XSS vulnerabilities in actions/main.php in the DragonByte Technologies Forumon RPG module before 1.0.8 for vBulletin when creating a new monster, allow remote attackers to inject arbitrary web script or HTML via the 1 monstertitle or 2 monsterdescription parameters...
CVE-2012-6670
Multiple cross-site scripting XSS vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the reason parameter in 1 actions/nominatemedal.php or 2 actions/requestmedal.php...
CVE-2012-6682
Cross-site scripting XSS vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbitrary web script or HTML via the mirrors parameter...
CVE-2012-6668
Multiple cross-site scripting XSS vulnerabilities in the Shout Reports in the DragonByte Technologies vBShout module before 6.0.6 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the 1 reportreason parameter in actions/doreport.php or 2 modnotes parameter in...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in actions/main.php in the DragonByte Technologies Forumon RPG module before 1.0.8 for vBulletin when creating a new monster, allow remote attackers to inject arbitrary web script or HTML via the 1 monstertitle or 2 monsterdescription parameters...
CVE-2012-6682
DragonByte Technologies vBDownloads for vBulletin (versions 1.3.2 and earlier) is affected by a cross-site scripting (XSS) vulnerability in downloads/actions/editdownload.php, exploitable via the mirrors[] parameter. The underlying issue is a reflected/scriptable input handling flaw that allows r...
CVE-2012-6671
DragonByte Technologies Forumon RPG for vBulletin (module) is affected by cross-site scripting in actions/main.php prior to version 1.0.8. The vulnerability allows remote attackers to inject arbitrary script/HTML via monster[title] or monster[description] when creating a new monster, indicating a...
CVE-2012-6682
Cross-site scripting XSS vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbitrary web script or HTML via the mirrors parameter...
CVE-2012-6668
Multiple cross-site scripting XSS vulnerabilities in the Shout Reports in the DragonByte Technologies vBShout module before 6.0.6 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the 1 reportreason parameter in actions/doreport.php or 2 modnotes parameter in...
CVE-2012-6670
Multiple cross-site scripting XSS vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the reason parameter in 1 actions/nominatemedal.php or 2 actions/requestmedal.php...
CVE-2012-6668
DragonByte Technologies vBShout for vBulletin (Shout Reports) is affected by XSS vulnerabilities in the Shout Reports feature prior to version 6.0.6. The issues arise in the reportreason parameter (actions/doreport.php) and the modnotes parameter (actions/updatereport.php), enabling remote attack...
CVE-2012-6670
DragonByte Technologies vbActivity for vBulletin is affected by multiple XSS vulnerabilities in versions prior to 3.0.1. The issue allows remote attackers to inject arbitrary web script or HTML via the reason parameter in actions/nominatemedal.php or actions/requestmedal.php. This is due to impro...