Unrated severityNVD Advisory· Published Aug 21, 2006· Updated Jun 16, 2026
CVE-2006-4273
CVE-2006-4273
Description
Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin 3.5.4 and 3.6.0 allows remote attackers to inject arbitrary web script or HTML by uploading an attachment with a .pdf extension that contains JavaScript, which is processed as script by Microsoft Internet Explorer 6.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.