Vulnerabilities (CVE)

Filtered by vendor Dragonbyte-tech Subscribe
Filtered by product Vbdownloads Module
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-6682 1 Dragonbyte-tech 1 Vbdownloads Module 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbitrary web script or HTML via the mirrors[] parameter.