2 matches found
vBulletin Cross Site Scripting Vulnerability
1. Advisory Information Title: vBulletin Cross Site Scripting Vulnerability Advisory ID: CORE-2008-0813 Advisory URL:https://www.coresecurity.com/core-labs/advisories/vbulletin-cross-site-scripting-vulnerability Date published: 2008-08-20 Date of last update: 2008-08-20 Vendors contacted:...
vBulletin 3.7.1 - 'admincp/faq.php?Injection adminlog.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/30134/info vBulletin is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would run in the context of th...