Vulnerabilities (CVE)

Filtered by vendor Vbseo Subscribe
Filtered by product Vbseo
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-6666 1 Vbseo 1 Vbseo 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
vBSeo before 3.6.0PL2 allows XSS via the member.php u parameter.
CVE-2014-9463 2 Vbseo, Vbulletin 2 Vbseo, Vbulletin 2024-02-04 9.0 HIGH 8.8 HIGH
functions_vbseo_hook.php in the VBSEO module for vBulletin allows remote authenticated users to execute arbitrary code via the HTTP Referer header to visitormessage.php.
CVE-2010-1077 2 Vbseo, Vbulletin 2 Vbseo, Vbulletin 2024-02-04 6.8 MEDIUM N/A
Directory traversal vulnerability in vbseo.php in Crawlability vBSEO plugin 3.1.0 for vBulletin allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the vbseourl parameter.