CVE-2004-2288

Jelsoft vBulletin - XSS

Title source: llm
STIX 2.1

Description

Cross-site scripting (XSS) vulnerability in index.php in Jelsoft vBulletin allows remote attackers to spoof parts of a website via the loc parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED
by p0rk · textwebappsphp
https://www.exploit-db.com/exploits/24124

References (2)

Core 2
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/10362

Scores

EPSS 0.0035
EPSS Percentile 57.8%

Details

Status published
Products (25)
jelsoft/vbulletin 1.0.1
jelsoft/vbulletin 2.0.3
jelsoft/vbulletin 2.0_rc2
jelsoft/vbulletin 2.0_rc3
jelsoft/vbulletin 2.2.0
jelsoft/vbulletin 2.2.1
jelsoft/vbulletin 2.2.2
jelsoft/vbulletin 2.2.3
jelsoft/vbulletin 2.2.4
jelsoft/vbulletin 2.2.5
... and 15 more
Published Dec 31, 2004
Tracked Since Feb 18, 2026