Vulnerabilities > Jelsoft > Vbulletin > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-12-31 | CVE-2002-1660 | OS Command Injection vulnerability in Jelsoft Vbulletin calendar.php in vBulletin before 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the command parameter. | 7.5 |
| 2001-06-27 | CVE-2001-0475 | Unspecified vulnerability in Jelsoft Vbulletin index.php in Jelsoft vBulletin does not properly initialize a PHP variable that is used to store template information, which allows remote attackers to execute arbitrary PHP code via special characters in the templatecache parameter. | 7.5 |