Cross-site scripting (XSS) vulnerability in (1) newreply.php or (2) newthread.php in vBulletin 3.0.1 allows remote attackers to inject arbitrary HTML or script as other users via the Edit-panel.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Vbulletin | Jelsoft | 3.0.1 (including) | 3.0.1 (including) |