This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:vbulletin:vbulletin:3.6
Detail
VendorVbulletinFirst view 2008-07-15
ProductVbulletinLast view2018-01-24
Version3.6TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:vbulletin:vbulletin

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
5.82018-01-24CVE-2018-6200NetworkMediumNone Requ...
4.32017-08-28CVE-2014-9469NetworkMediumNone Requ...
52017-04-06CVE-2017-7569NetworkLowNone Requ...
7.52016-08-30CVE-2016-6195NetworkLowNone Requ...
3.52014-10-24CVE-2014-2021NetworkMediumRequires ...
Hide | Show 4 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.12014-10-15CVE-2014-2022NetworkHighRequires ...
5.82012-12-31CVE-2011-5251NetworkMediumNone Requ...
102012-08-14CVE-2012-4328NetworkLowNone Requ...
4.32008-07-15CVE-2008-3184NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
42% (3)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
28% (2)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...
14% (1)CWE-601URL Redirection to Untrusted Site ('Open Redirect')
14% (1)CWE-20Improper Input Validation

Open Source Vulnerability Database (OSVDB)

idDescription
46937vBulletin Debug Mode Unspecified XSS
46936vBulletin admincp/faq.php Injection adminlog.php XSS