Categories

Applications (255)
Blogs (7)
Content Management (167)
Customer Relationship (4)
Discussion Boards (37)
E-Commerce (15)
General Purpose Directories (2)
Image Galleries (21)
Mailing Lists (1)
Tips (3)
Vulnerabilities (366)
Access Bypass (55)
Cross Site Scripting (138)
Denial Of Service (2)
File Inclusion (54)
Information Disclosure (15)
Privilege Escalation (2)
Remote Command Execution (17)
Session Hijacking (2)
SQL Injection (140)
« Dolphin File Inclusion
Joomla Unauthorized Access »

vBulletin Two Script Insertion

Published by TL Guan July 17th, 2008 in Cross Site Scripting and Discussion Boards.

Application: vBulletin
Affected Version: version 3.7.2 and 3.6.10 PL2
Vendor’s URL: vBulletin
Bug Type: Cross Site Scripting
Risk Level: Critical

Solution:
Update to version 3.7.2 PL1 or 3.6.10 PL3.

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional