Exposure of vBulletin
Message boards18
exposure score
1,382
sites use
0
exploited
2
critical
CVEs
3 resultsCVE-2025-48827CRITICALvBulletin 5.0.0 through 5.7.5 and 6.0.0 through 6.0.3 allows unauthenticated users to invoke protected API controllers' methods when runningEPSS 69.6%CVE-2025-48828CRITICALCertain vBulletin versions might allow attackers to execute arbitrary PHP code by abusing Template Conditionals in the template engine. By cEPSS 48.4%CVE-2026-9357MEDIUMvBulletin Login cross site scriptingEPSS 0.2%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →