Cross-site scripting (XSS) vulnerability in vBulletin 3.6.10 and 3.7.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors and an "obscure method." NOTE: the vector is probably in the redirect parameter to the Admin Control Panel (admincp/index.php).
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2008-06-17T15:00:00
Updated: 2018-10-11T19:57:01
Reserved: 2008-06-17T00:00:00
Link: CVE-2008-2744
JSON object: View
NVD Information
Status : Modified
Published: 2008-06-17T15:41:00.000
Modified: 2018-10-11T20:42:51.477
Link: CVE-2008-2744
JSON object: View
Redhat Information
No data.
CWE