CVE-2026-9357 | vBulletin 6.x Login cross site scripting

A vulnerability has been found in vBulletin 6.x and classified as problematic. This impacts an unknown function of the component Login. Performing a manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2026-9357. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

VulDB is withholding an extended redistribution of exploit details to prevent simplified exploitation. The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More