Known Vulnerabilities for products from Jelsoft
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Jelsoft".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2009-2172 | Cross-site scripting (XSS) vulnerability in forum/radioandtv.php in the Radio and TV Player addon for vBulletin allows remote... | 4.3 - MEDIUM | 2009-06-23 | 2017-09-29 |
| CVE-2008-6754 | The Personal Sticky Threads addon 1.0.3c for vBulletin allows remote authenticated users to read the title, author, and pages... | 4 - MEDIUM | 2009-04-27 | 2018-10-11 |
| CVE-2007-4959 | Cross-site scripting (XSS) vulnerability in catalog_products_with_images.php in osCMax 2.0.0-RC3-0-1 allows remote attackers ... | 4.3 - MEDIUM | 2007-09-18 | 2017-07-29 |
| CVE-2007-4453 | ** DISPUTED ** Multiple cross-site scripting (XSS) vulnerabilities in vBulletin 3.6.8 allow remote attackers to inject arbit... | 4.3 - MEDIUM | 2007-08-21 | 2023-11-07 |
| CVE-2007-4120 | ** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in Jelsoft vBulletin 3.6.5 allow remote attackers to execu... | 9.3 - HIGH | 2007-08-01 | 2023-11-07 |
| CVE-2007-3326 | Multiple directory traversal vulnerabilities in vBulletin 3.x.x allow remote attackers to redirect visitors to arbitrary loca... | 5.8 - MEDIUM | 2007-06-21 | 2018-10-16 |
| CVE-2007-3197 | SQL injection vulnerability in vBSupport.php in vBSupport 1.1 before 1.1a allows remote attackers to execute arbitrary SQL co... | 7.5 - HIGH | 2007-06-12 | 2008-11-15 |
| CVE-2007-3196 | SQL injection vulnerability in vBSupport.php in vSupport Integrated Ticket System 3.x.x allows remote attackers to execute ar... | 7.5 - HIGH | 2007-06-12 | 2018-10-16 |
| CVE-2007-2912 | Unspecified vulnerability in Jelsoft vBulletin before 3.6.6, when unauthenticated User Infraction Permissions is disabled, al... | 5 - MEDIUM | 2007-05-30 | 2008-11-15 |
| CVE-2007-2911 | SQL injection vulnerability in admincp/attachment.php in Jelsoft vBulletin before 3.6.6 allows remote authenticated administr... | 8.5 - HIGH | 2007-05-30 | 2017-07-29 |
| CVE-2007-2910 | Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin before 3.6.7 PL1 allows remote attackers to inject arbitrary we... | 4.3 - MEDIUM | 2007-05-30 | 2012-11-06 |
| CVE-2007-2909 | Cross-site scripting (XSS) vulnerability in calendar.php in Jelsoft vBulletin 3.6.x before 3.6.7 allows remote attackers to i... | 3.5 - LOW | 2007-05-30 | 2012-11-06 |
| CVE-2007-2908 | Cross-site scripting (XSS) vulnerability in calendar.php in Jelsoft vBulletin before 3.6.6 allows remote attackers to inject ... | 4.3 - MEDIUM | 2007-05-30 | 2018-10-16 |
| CVE-2007-1573 | SQL injection vulnerability in admincp/attachment.php in Jelsoft vBulletin 3.6.5 allows remote authenticated administrators t... | 6 - MEDIUM | 2007-03-21 | 2018-10-16 |
| CVE-2007-1342 | Cross-site scripting (XSS) vulnerability in admincp/index.php in Jelsoft vBulletin 3.6.5 and earlier allows remote attackers ... | 4.3 - MEDIUM | 2007-03-08 | 2018-10-16 |
| CVE-2007-1292 | SQL injection vulnerability in inlinemod.php in Jelsoft vBulletin before 3.5.8, and before 3.6.5 in the 3.6.x series, might a... | 7.5 - HIGH | 2007-03-07 | 2017-10-11 |
| CVE-2007-0869 | Cross-site scripting (XSS) vulnerability in the Attachment Manager (admincp/attachment.php) in Jelsoft vBulletin 3.6.4 allows... | 4.3 - MEDIUM | 2007-02-09 | 2008-11-15 |
| CVE-2007-0830 | ** DISPUTED ** Multiple cross-site scripting (XSS) vulnerabilities in the Admin Control Panel (AdminCP) in Jelsoft vBulletin... | 3.5 - LOW | 2007-02-07 | 2023-11-07 |
| CVE-2006-6779 | Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin allows remote attackers to inject arbitrary web script or HTML ... | 6.8 - MEDIUM | 2006-12-28 | 2018-10-17 |
| CVE-2006-6040 | Multiple cross-site scripting (XSS) vulnerabilities in admincp/index.php in Jelsoft vBulletin 3.6.x allow remote attackers to... | 6.8 - MEDIUM | 2006-11-22 | 2018-10-17 |