• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Multiple VBulletin Cross Site Scripting Vulnerabilities

Bugtraq ID:	5997
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Oct 18 2002 12:00AM
Updated:	Oct 18 2002 12:00AM
Credit:	Discovery of this vulnerability credited to Sp.IC <SpeedICNet@Hotmail.Com>.
Vulnerable:	VBulletin VBulletin 2.2.8 VBulletin VBulletin 2.2.7 VBulletin VBulletin 2.2.6 VBulletin VBulletin 2.2.5 VBulletin VBulletin 2.2.4 VBulletin VBulletin 2.2.3 VBulletin VBulletin 2.2.2 VBulletin VBulletin 2.2.1 VBulletin VBulletin 2.2 .0 VBulletin VBulletin 2.0 rc 3 VBulletin VBulletin 2.0 rc 2
Not Vulnerable: