Vendor
Vanilla OS
Products
2
CVEs
4
Across products
4
Status
Private
Products
2- 3 CVEs
- 1 CVE
Recent CVEs
4| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-54855 | 0.00 | — | 0.00 | Jan 13, 2026 | fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts. | ||
| CVE-2011-1009 | 0.00 | — | 0.00 | Feb 5, 2020 | Vanilla Forums 2.0.17.1 through 2.0.17.5 has XSS in /vanilla/index.php via the p parameter. | ||
| CVE-2011-3614 | 0.00 | — | 0.01 | Jan 22, 2020 | An Access Control vulnerability exists in the Facebook, Twitter, and Embedded plugins in Vanilla Forums before 2.0.17.9. | ||
| CVE-2011-3613 | 0.00 | — | 0.01 | Jan 22, 2020 | An issue exists in Vanilla Forums before 2.0.17.9 due to the way cookies are handled. |
- CVE-2024-54855Jan 13, 2026risk 0.00cvss —epss 0.00
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts.
- CVE-2011-1009Feb 5, 2020risk 0.00cvss —epss 0.00
Vanilla Forums 2.0.17.1 through 2.0.17.5 has XSS in /vanilla/index.php via the p parameter.
- CVE-2011-3614Jan 22, 2020risk 0.00cvss —epss 0.01
An Access Control vulnerability exists in the Facebook, Twitter, and Embedded plugins in Vanilla Forums before 2.0.17.9.
- CVE-2011-3613Jan 22, 2020risk 0.00cvss —epss 0.01
An issue exists in Vanilla Forums before 2.0.17.9 due to the way cookies are handled.