5 matches found
EUVD-2020-17808
Malware in sbrugna...
vBulletin Cross-Site Scripting Vulnerability (CNVD-2020-50935)
vBulletin is a suite of forum programs that can be customized to suit your needs. A cross-site scripting vulnerability exists in the Admin CP in vBulletin 5.6.3. The vulnerability can be exploited by an attacker to conduct a cross-site scripting attack via the Junior Member Title in the User Titl...
CVE-2020-25117
The Admin CP in vBulletin 5.6.3 allows XSS via a Junior Member Title to User Title Manager...
Design/Logic Flaw
The Admin CP in vBulletin 5.6.3 allows XSS via a Junior Member Title to User Title Manager...
CVE-2020-25117
CVE-2020-25117 affects vBulletin 5.6.3: the Admin CP is vulnerable to cross-site scripting via the Junior Member Title field in the User Title Manager. The public records describe a stored/reflected XSS path within the Admin Control Panel, with CVSS v3.1 base score 4.8 (MEDIUM) and CVSSv2 base sc...