5 matches found
EUVD-2012-6526
Malware in sbrugna...
DragonByte Technologies vBDownloads for vBulletin Cross-Site Scripting Vulnerability
DragonByte Technologies vBDownloads for vBulletin is a download module for vBulletin open source commercial web forum program from DragonByte Technologies, Scotland. A cross-site scripting vulnerability exists in the downloads/actions/editdownload.php file in DragonByte Technologies vBDownloads f...
Cross site scripting
Cross-site scripting XSS vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbitrary web script or HTML via the mirrors parameter...
CVE-2012-6682
DragonByte Technologies vBDownloads for vBulletin (versions 1.3.2 and earlier) is affected by a cross-site scripting (XSS) vulnerability in downloads/actions/editdownload.php, exploitable via the mirrors[] parameter. The underlying issue is a reflected/scriptable input handling flaw that allows r...
CVE-2012-6682
Cross-site scripting XSS vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbitrary web script or HTML via the mirrors parameter...