3 matches found
CVE-2014-9463
The CVE-2014-9463 issue concerns the VBSEO module for vBulletin, specifically the functions_vbseo_hook.php file. Multiple sources (NVD CVE entry and CNVD) describe a remote code execution vulnerability triggered by a crafted HTTP Referer header directed at visitormessage.php, allowing remoteAuthe...
CVE-2010-1077
The CVE-2010-1077 entry concerns the Crawlability vBSEO plugin for vBulletin (Crawlability vBSEO plugin 3.1.0). The vulnerability is a directory traversal flaw in vbseo.php that allows remote attackers to cause local file inclusion and arbitrary code execution via traversal sequences in the vbseo...
CVE-2012-6666
CVE-2012-6666 affects vBSeo prior to 3.6.0PL2. The issue is a reflected XSS vulnerability exploitable via the member.php u parameter. The provided documents do not specify affected platforms beyond the product/version and do not include exploit code or remediation details. No additional impact or...