Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-46171 |
|
Vulnerability in vbulletin (CVE-2025-46171)
vulnerability in vbulletin (CVE-2025-46171). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-16759 KEV |
|
[KEV] Code Injection in vbulletin (CVE-2019-16759)
code injection in vbulletin (CVE-2019-16759). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-17496 KEV |
|
[KEV] Vulnerability in vbulletin (CVE-2020-17496)
vulnerability in vbulletin (CVE-2020-17496). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-17671 |
|
Path Traversal in apache (CVE-2017-17671)
path traversal in apache (CVE-2017-17671). Successful exploitation can lead to full system takeover.
|
| CVE-2017-17672 |
|
Unsafe Deserialization in deserialization (CVE-2017-17672)
vulnerability in deserialization (CVE-2017-17672). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3419 |
|
Vulnerability in vbulletin (CVE-2015-3419)
vulnerability in vbulletin (CVE-2015-3419). Data can be tampered with by attackers.
|
| CVE-2014-9463 |
|
Code Injection in vbseo (CVE-2014-9463)
code injection in vbseo (CVE-2014-9463). Successful exploitation can lead to full system takeover. Exploitable via `Referer header`.
|
| CVE-2014-9469 |
|
Cross-Site Scripting (XSS) in vbulletin (CVE-2014-9469)
cross-site scripting in vbulletin (CVE-2014-9469). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7569 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2017-7569)
SSRF in ssrf (CVE-2017-7569). Data can be tampered with by attackers.
|