CVE-2005-3025

Multiple cross-site scripting (XSS) vulnerabilities in vBulletin 3.0.7 and earlier allow remote attackers to inject arbitrary web script or HTML via the loc parameter to (1) modcp/index.php or (2) admincp/index.php, or the ip parameter to (3) modcp/user.php or (4) admincp/usertitle.php.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:jelsoft:vbulletin:1.0.1:*:lite:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.0_rc2:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.0_rc3:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0.7:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0_beta_2:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0_beta_3:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0_beta_4:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0_beta_5:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0_beta_6:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0_beta_7:*:*:*:*:*:*:*
cpe:2.3:a:jelsoft:vbulletin:3.0_gamma:*:*:*:*:*:*:*

History

No history.

Information

Published : 2005-09-21 22:03

Updated : 2024-02-28 10:42


NVD link : CVE-2005-3025

Mitre link : CVE-2005-3025

CVE.ORG link : CVE-2005-3025


JSON object : View

Products Affected

jelsoft

  • vbulletin