• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

JelSoft VBulletin Cross-Site Scripting Vulnerability

Bugtraq ID:	9649
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Feb 12 2004 12:00AM
Updated:	Feb 12 2004 12:00AM
Credit:	Disclosure of this issue is credited to Jamie Fisher <contact_jamie_fisher@yahoo.co.uk>.
Vulnerable:	Jelsoft vBulletin 2.3.4 Jelsoft vBulletin 2.3.3 Jelsoft vBulletin 2.3 Jelsoft vBulletin 2.2.9 can Jelsoft vBulletin 2.2.8 Jelsoft vBulletin 2.2.7 Jelsoft vBulletin 2.2.6 Jelsoft vBulletin 2.2.5 Jelsoft vBulletin 2.2.4 Jelsoft vBulletin 2.2.3 Jelsoft vBulletin 2.2.2 Jelsoft vBulletin 2.2.1 Jelsoft vBulletin 2.2 .0 - Apache Software Foundation Apache 1.3.22 - Apache Software Foundation Apache 1.3.20 - Apache Software Foundation Apache 1.3.20 - Apache Software Foundation Apache 1.3.19 - Apache Software Foundation Apache 1.3.19 - Apache Software Foundation Apache 1.3.17 - Apache Software Foundation Apache 1.3.17 - Microsoft IIS 5.0 - Microsoft IIS 4.0 - Microsoft IIS 3.0 Jelsoft vBulletin 2.0.2 Jelsoft vBulletin 2.0.1 Jelsoft vBulletin 2.0 beta 3 Jelsoft vBulletin 2.0 beta 2 Jelsoft vBulletin 2.0 Jelsoft vBulletin 1.1.6 Jelsoft vBulletin 1.1 Jelsoft vBulletin 1.0 Lite
Not Vulnerable: