9 matches found
EUVD-2020-17814
Malware in sbrugna...
CVE-2020-25123
The Admin CP in vBulletin 5.6.3 allows XSS via a Smilie Title to Smilies Manager...
vBulletin Cross-Site Scripting Vulnerability (CNVD-2020-50940)
vBulletin is a suite of forum programs that can be customized to suit your needs. A cross-site scripting vulnerability exists in the Admin CP in vBulletin 5.6.3. The vulnerability can be exploited by an attacker to conduct a cross-site scripting attack via the Smilie title of Smilies Manager...
CVE-2020-25123
The Admin CP in vBulletin 5.6.3 allows XSS via a Smilie Title to Smilies Manager...
CVE-2020-25123
The Admin CP in vBulletin 5.6.3 allows XSS via a Smilie Title to Smilies Manager...
Design/Logic Flaw
The Admin CP in vBulletin 5.6.3 allows XSS via a Smilie Title to Smilies Manager...
CVE-2020-25123
CVE-2020-25123 affects vBulletin 5.6.3: the Admin CP is vulnerable to cross-site scripting via the Smilie Title field in the Smilies Manager. The root cause, as described in the provided documents, is insufficient escaping/validation of the Smilie Title input, allowing injected script when the Sm...
CVE-2020-25123
The Admin CP in vBulletin 5.6.3 allows XSS via a Smilie Title to Smilies Manager...
vBulletin 5.6.2 Persistent Cross Site Scripting
Exploit Title: vBulletin 5.6.2 Stored XSS Date:15.08.2020 Author: Vincent666 ibn Winnie Software Link: https://www.vbulletin.com/en/features/ Tested on: Windows 10 Web Browser: Mozilla Firefox Blog : https://pentest-vincent.blogspot.com/ PoC:...