6 matches found
EUVD-2012-6514
Malware in sbrugna...
DragonByte Technologies vbActivity for vBulletin Cross-Site Scripting Vulnerability
DragonByte Technologies vbActivity for vBulletin is a module with polling and rating functionality for vBulletin, an open source commercial web forum program from DragonByte Technologies, Scotland. A cross-site scripting vulnerability exists in DragonByte Technologies vbActivity for vBulletin...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the reason parameter in 1 actions/nominatemedal.php or 2 actions/requestmedal.php...
CVE-2012-6670
Multiple cross-site scripting XSS vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the reason parameter in 1 actions/nominatemedal.php or 2 actions/requestmedal.php...
CVE-2012-6670
Multiple cross-site scripting XSS vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the reason parameter in 1 actions/nominatemedal.php or 2 actions/requestmedal.php...
CVE-2012-6670
DragonByte Technologies vbActivity for vBulletin is affected by multiple XSS vulnerabilities in versions prior to 3.0.1. The issue allows remote attackers to inject arbitrary web script or HTML via the reason parameter in actions/nominatemedal.php or actions/requestmedal.php. This is due to impro...