Vulnerability CVE-2023-39777
Published: 2023-09-16   Modified: 2023-09-19

Description:
A cross-site scripting (XSS) vulnerability in the Admin Control Panel of vBulletin 5.7.5 and 6.0.0 allows attackers to execute arbitrary web scripts or HTML via the /login.php?do=login url parameter.

 References:
https://gist.github.com/GiongfNef/8fe658dce4c7fcf3a7b4e6387e50141c
Copyright 2026, cxsecurity.com

 

Back to Top