Vulnerabilities (CVE)

Filtered by vendor Dragonbyte-tech Subscribe
Filtered by product Forumon Rpg Module
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-6671 1 Dragonbyte-tech 1 Forumon Rpg Module 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
Multiple cross-site scripting (XSS) vulnerabilities in actions/main.php in the DragonByte Technologies Forumon RPG module before 1.0.8 for vBulletin when creating a new monster, allow remote attackers to inject arbitrary web script or HTML via the (1) monster[title] or (2) monster[description] parameters.