Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Tag: vbulletin Clear
ID Title
CVE-2025-46171 Vulnerability in vbulletin (CVE-2025-46171)
vulnerability in vbulletin (CVE-2025-46171). Risk of unauthorized operations or information disclosure.
CVE-2019-16759 KEV [KEV] Code Injection in vbulletin (CVE-2019-16759)
code injection in vbulletin (CVE-2019-16759). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-17496 KEV [KEV] Vulnerability in vbulletin (CVE-2020-17496)
vulnerability in vbulletin (CVE-2020-17496). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-17671 Path Traversal in apache (CVE-2017-17671)
path traversal in apache (CVE-2017-17671). Successful exploitation can lead to full system takeover.
CVE-2017-17672 Unsafe Deserialization in deserialization (CVE-2017-17672)
vulnerability in deserialization (CVE-2017-17672). Successful exploitation can lead to full system takeover.
CVE-2015-3419 Vulnerability in vbulletin (CVE-2015-3419)
vulnerability in vbulletin (CVE-2015-3419). Data can be tampered with by attackers.
CVE-2014-9463 Code Injection in vbseo (CVE-2014-9463)
code injection in vbseo (CVE-2014-9463). Successful exploitation can lead to full system takeover. Exploitable via `Referer header`.
CVE-2014-9469 Cross-Site Scripting (XSS) in vbulletin (CVE-2014-9469)
cross-site scripting in vbulletin (CVE-2014-9469). Risk of unauthorized operations or information disclosure.
CVE-2017-7569 SSRF (Server-Side Request Forgery) in ssrf (CVE-2017-7569)
SSRF in ssrf (CVE-2017-7569). Data can be tampered with by attackers.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →