Description
Cross-site scripting (XSS) vulnerability in register.php for vBulletin 3.0 Beta 2 allows remote attackers to inject arbitrary HTML or web script via optional fields such as (1) "Interests-Hobbies", (2) "Biography", or (3) "Occupation."
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Ferruh Mavituna · textwebappsphp
https://www.exploit-db.com/exploits/22990
References (1)
Core 1
Core References
Exploit, Vendor Advisory mailing-list
x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0078.html
Scores
EPSS
0.0056
EPSS Percentile
68.3%
Details
Status
published
Published
Feb 17, 2004
Tracked Since
Feb 18, 2026