CVE-2002-2235

vBulletin <= 2.2.9 - Cross-Site Scripting via member2.php perpage Variable

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-2235. PoCs published by Sp.IC.

AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in vBulletin's 'members2.php' by injecting malicious JavaScript to steal cookie-based authentication credentials. The PoC includes a PHP script to log stolen cookies and provides a crafted URL to trigger the vulnerability.

Description

member2.php in vBulletin 2.2.9 and earlier does not properly restrict the $perpage variable to be an integer, which causes an error message to be reflected back to the user without quoting, which facilitates cross-site scripting (XSS) and possibly other attacks.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Sp.IC · phpwebappsphp
https://www.exploit-db.com/exploits/22042

This exploit demonstrates a cross-site scripting (XSS) vulnerability in vBulletin's 'members2.php' by injecting malicious JavaScript to steal cookie-based authentication credentials. The PoC includes a PHP script to log stolen cookies and provides a crafted URL to trigger the vulnerability.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: vBulletin (version not specified)
No auth needed
Prerequisites: Victim must click a crafted URL · Attacker must host the PHP script on a server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/10701.php
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/6246
Exploit mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/301076
Exploit third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3229

Scores

EPSS 0.0206
EPSS Percentile 78.8%

Details

CWE
CWE-189
Status published
Products (14)
jelsoft/vbulletin 2.0
jelsoft/vbulletin 2.0.1
jelsoft/vbulletin 2.0.2
jelsoft/vbulletin 2.2.0
jelsoft/vbulletin 2.2.1
jelsoft/vbulletin 2.2.2
jelsoft/vbulletin 2.2.3
jelsoft/vbulletin 2.2.4
jelsoft/vbulletin 2.2.5
jelsoft/vbulletin 2.2.6
... and 4 more
Published Dec 31, 2002
Tracked Since Feb 18, 2026