Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Apr 16, 2026
CVE-2002-1922
CVE-2002-1922
Description
Cross-site scripting (XSS) vulnerability in global.php in Jelsoft vBulletin 2.0.0 through 2.2.8 allows remote attackers to inject arbitrary web script or HTML via the (1) $scriptpath or (2) $url variables.
Affected products
11cpe:2.3:a:jelsoft:vbulletin:2.0_rc2:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:a:jelsoft:vbulletin:2.0_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:jelsoft:vbulletin:2.0_rc3:*:*:*:*:*:*:*
- cpe:2.3:a:jelsoft:vbulletin:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:jelsoft:vbulletin:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:jelsoft:vbulletin:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:jelsoft:vbulletin:2.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:jelsoft:vbulletin:2.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:jelsoft:vbulletin:2.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:jelsoft:vbulletin:2.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:jelsoft:vbulletin:2.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:jelsoft:vbulletin:2.2.8:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- archives.neohapsis.com/archives/bugtraq/2002-10/0272.htmlnvdExploitVendor Advisory
- www.securityfocus.com/bid/5997nvdExploitPatch
- www.iss.net/security_center/static/10407.phpnvd
News mentions
0No linked articles in our index yet.