Vulnerabilities > Dragonbyte Tech

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-19	CVE-2018-12580	Cross-site Scripting vulnerability in Dragonbyte-Tech Vbsecurity library/DBTech/Security/Action/Sessions.php in DragonByte vBSecurity 3.x through 3.3.0 for vBulletin 3 and vBulletin 4 allows self-XSS via $session['user_agent'] in the "Login Sessions" feature. network dragonbyte-tech CWE-79	4.3
2018-01-11	CVE-2012-6682	Cross-site Scripting vulnerability in Dragonbyte-Tech Vbdownloads Module 1.3.2 Cross-site scripting (XSS) vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbitrary web script or HTML via the mirrors[] parameter. network dragonbyte-tech CWE-79	4.3
2018-01-11	CVE-2012-6671	Cross-site Scripting vulnerability in Dragonbyte-Tech Forumon RPG Module Multiple cross-site scripting (XSS) vulnerabilities in actions/main.php in the DragonByte Technologies Forumon RPG module before 1.0.8 for vBulletin when creating a new monster, allow remote attackers to inject arbitrary web script or HTML via the (1) monster[title] or (2) monster[description] parameters. network dragonbyte-tech CWE-79	4.3
2018-01-11	CVE-2012-6670	Cross-site Scripting vulnerability in Dragonbyte-Tech Vbactivity Module Multiple cross-site scripting (XSS) vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the reason parameter in (1) actions/nominatemedal.php or (2) actions/requestmedal.php. network dragonbyte-tech CWE-79	4.3
2018-01-11	CVE-2012-6668	Cross-site Scripting vulnerability in Dragonbyte-Tech Vbshout Module Multiple cross-site scripting (XSS) vulnerabilities in the Shout Reports in the DragonByte Technologies vBShout module before 6.0.6 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the (1) reportreason parameter in actions/doreport.php or (2) modnotes parameter in actions/updatereport.php. network dragonbyte-tech CWE-79	4.3
2018-01-11	CVE-2012-6667	Cross-site Scripting vulnerability in Dragonbyte-Tech Vbshout Cross-site scripting (XSS) vulnerability in vbshout.php in DragonByte Technologies vBShout module for vBulletin allows remote attackers to inject arbitrary web script or HTML via the shout parameter in a shout action. network dragonbyte-tech CWE-79	4.3

Vulnerabilities > Dragonbyte Tech {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Dragonbyte Tech"}]}

Vulnerabilities > Dragonbyte Tech