Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
library/DBTech/Security/Action/Sessions.php in DragonByte vBSecurity 3.x through 3.3.0 for vBulletin 3 and vBulletin 4 allows self-XSS via $session['user_agent'] in the "Login Sessions" feature.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
DragonByte vBSecurity for vBulletin 跨站脚本漏洞
Vulnerability Description
DragonByte vBSecurity for vBulletin是苏格兰DragonByte Technologies公司的一套基于vBulletin的适用于网站的安全防护软件。该软件能够监控配置文件修改、用户登录,并在网站安全受到威胁时发出警报。 DragonByte vBSecurity for vBulletin 3.3.0之前的3.x版本中的library/DBTech/Security/Action/Sessions.php文件存在跨站脚本漏洞。攻击者可借助Login Sessions功能
CVSS Information
N/A
Vulnerability Type
N/A