The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.
Common Name None VWE-ID VWE-2021-6101 Related Report None Severity LOW Exploit Difficulty NORMAL Platform vBulletin Description HTML Injection. When previewing content or displaying an error, an editor field is presented again after submission without reencoding the submitted value.
Discovered May 7, 2021 Resolved June 6, 2021 Patches Available 4.1.1 Patch Level 5
4.1.0 Patch Level 7
4.1.0 RC 3 Patch Level 9
This page has been seen 320 times.