Lucene search
+L

7 matches found

redhatcve
redhatcve
added 2026/01/09 12:28 p.m.9 views

CVE-2018-12580

library/DBTech/Security/Action/Sessions.php in DragonByte vBSecurity 3.x through 3.3.0 for vBulletin 3 and vBulletin 4 allows self-XSS via $session'useragent' in the "Login Sessions" feature...

6.1CVSS7AI score0.00647EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-4540

Malware in sbrugna...

6.1CVSS6.3AI score0.00647EPSS
Exploits0References2
cnvd
cnvd
added 2018/06/21 12:0 a.m.3 views

DragonByte vBSecurity for vBulletin Cross-Site Scripting Vulnerability

DragonByte vBSecurity for vBulletin is a suite of vBulletin-based security protection software for web sites from DragonByte Technologies, Scotland. The software monitors configuration file changes, user logins, and alerts you when your website's security is threatened. A cross-site scripting...

6.1CVSS5.8AI score0.00647EPSS
Exploits0References1
nvd
nvd
added 2018/06/19 4:29 p.m.16 views

CVE-2018-12580

library/DBTech/Security/Action/Sessions.php in DragonByte vBSecurity 3.x through 3.3.0 for vBulletin 3 and vBulletin 4 allows self-XSS via $session'useragent' in the "Login Sessions" feature...

6.1CVSS6.3AI score0.00647EPSS
Exploits0References1
osv
osv
added 2018/06/19 4:29 p.m.3 views

CVE-2018-12580

library/DBTech/Security/Action/Sessions.php in DragonByte vBSecurity 3.x through 3.3.0 for vBulletin 3 and vBulletin 4 allows self-XSS via $session'useragent' in the "Login Sessions" feature...

6.1CVSS5.8AI score0.00647EPSS
Exploits0References1
prion
prion
added 2018/06/19 4:29 p.m.12 views

Design/Logic Flaw

library/DBTech/Security/Action/Sessions.php in DragonByte vBSecurity 3.x through 3.3.0 for vBulletin 3 and vBulletin 4 allows self-XSS via $session'useragent' in the "Login Sessions" feature...

4.3CVSS6.3AI score0.00647EPSS
Exploits0References1Affected Software1
cve
cve
added 2018/06/19 4:0 p.m.44 views

CVE-2018-12580

CVE-2018-12580 affects DragonByte vBSecurity 3.x up to 3.3.0 for vBulletin 3/4. The issue is a self-XSS in the Login Sessions feature caused by untrusted input in the session field $session['user_agent'], enabling an attacker to inject script/HTML. The Red Hat entry and CNVD/NVD records corrobora...

6.1CVSS6.3AI score0.00647EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder