CVE-2012-6682
DragonByte Technologies vBDownloads for vBulletin (versions 1.3.2 and earlier) is affected by a cross-site scripting (XSS) vulnerability in downloads/actions/editdownload.php, exploitable via the mirrors[] parameter. The underlying issue is a reflected/scriptable input handling flaw that allows r...