CVE-2012-3844
Vbulletin - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in vBulletin 4.1.12 allows remote attackers to inject arbitrary web script or HTML via a long string in the subject parameter when creating a post.
References (4)
Scores
EPSS
0.0025
EPSS Percentile
47.9%
Classification
CWE
CWE-79
Status
published
Affected Products (2)
vbulletin/vbulletin
n/a/n/a
Timeline
Published
Jul 03, 2012
Tracked Since
Feb 18, 2026