vBulletin Image Upload HTML Injection Vulnerability

Bugtraq ID: 15296
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Nov 02 2005 12:00AM
Updated: Nov 02 2005 12:00AM
Credit: The discoverer of this vulnerability is currently unknown, the vendor disclosed this issue.
Vulnerable: VBulletin VBulletin 3.0.9
VBulletin VBulletin 3.0.8
VBulletin VBulletin 3.0.7
VBulletin VBulletin 3.0.6
VBulletin VBulletin 3.0.5
VBulletin VBulletin 3.0.4
VBulletin VBulletin 3.0.3
VBulletin VBulletin 3.0.2
VBulletin VBulletin 3.0.1
VBulletin VBulletin 3.0 Gamma
VBulletin VBulletin 3.0 beta 7
VBulletin VBulletin 3.0 beta 6
VBulletin VBulletin 3.0 beta 5
VBulletin VBulletin 3.0 beta 4
VBulletin VBulletin 3.0 beta 3
VBulletin VBulletin 3.0 beta 2
VBulletin VBulletin 3.0
VBulletin VBulletin 2.3.4
VBulletin VBulletin 2.3.3
VBulletin VBulletin 2.3.2
VBulletin VBulletin 2.3 .0
VBulletin VBulletin 2.2.9
VBulletin VBulletin 2.2.8
VBulletin VBulletin 2.2.7
VBulletin VBulletin 2.2.6
VBulletin VBulletin 2.2.5
VBulletin VBulletin 2.2.4
VBulletin VBulletin 2.2.3
VBulletin VBulletin 2.2.2
VBulletin VBulletin 2.2.1
VBulletin VBulletin 2.2 .0
VBulletin VBulletin 2.0.3
VBulletin VBulletin 2.0 rc 3
VBulletin VBulletin 2.0 rc 2
VBulletin VBulletin 1.0.1 lite
Not Vulnerable: VBulletin VBulletin 3.5.1
VBulletin VBulletin 3.0.10
VBulletin VBulletin 2.3.8


 

Privacy Statement
Copyright 2010, SecurityFocus