Vulnerabilities > CVE-2002-1678 - Cross-Site Scripting vulnerability in VBulletin
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE network
jelsoft
Summary
Cross-site scripting (XSS) vulnerability in memberlist.php in Jelsoft vBulletin 2.0 rc 2 through 2.2.4 allows remote attackers to steal authentication credentials by injecting script into $letterbits.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 7 |