EIP-2026-112992
PRE-CVEvBulletin 3.7.1 - Moderation Control Panel 'redirect' Cross-Site Scripting
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-112992. PoCs published by Jessica Hope.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in vBulletin's Moderation Control Panel (MCP) by injecting malicious JavaScript via the 'redirect' parameter. The PoC uses a data URI to execute arbitrary script code in the context of the affected site.
Description
vBulletin 3.7.1 - Moderation Control Panel 'redirect' Cross-Site Scripting
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in vBulletin's Moderation Control Panel (MCP) by injecting malicious JavaScript via the 'redirect' parameter. The PoC uses a data URI to execute arbitrary script code in the context of the affected site.