Vendor CVEs
Vanilla OS
All CVEs
21 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2011-3614 | Cri | 0.64 | 9.8 | 0.02 | Jan 22, 2020 | An Access Control vulnerability exists in the Facebook, Twitter, and Embedded plugins in Vanilla Forums before 2.0.17.9. | ||
| CVE-2018-18903 | Cri | 0.64 | 9.8 | 0.05 | Nov 3, 2018 | Vanilla 2.6.x before 2.6.4 allows remote code execution. | ||
| CVE-2016-10073 | Hig | 0.58 | 7.5 | 0.84 | May 23, 2017 | The from method in library/core/class.email.php in Vanilla Forums before 2.3.1 allows remote attackers to spoof the email domain in sent messages and potentially obtain sensitive information via a crafted HTTP Host header, as demonstrated by a password reset request. | ||
| CVE-2017-1000432 | Hig | 0.55 | 8.0 | 0.02 | Jan 2, 2018 | Vanilla Forums below 2.1.5 are affected by CSRF leading to Deleting topics and comments from forums Admin access | ||
| CVE-2011-3613 | Hig | 0.49 | 7.5 | 0.02 | Jan 22, 2020 | An issue exists in Vanilla Forums before 2.0.17.9 due to the way cookies are handled. | ||
| CVE-2018-19499 | Hig | 0.47 | 7.2 | 0.02 | Nov 23, 2018 | Vanilla before 2.5.5 and 2.6.x before 2.6.2 allows Remote Code Execution because authenticated administrators have a reachable call to unserialize in the Gdn_Format class. | ||
| CVE-2018-16410 | Med | 0.42 | 6.5 | 0.01 | Sep 3, 2018 | Vanilla before 2.6.1 allows SQL injection via an invitationID array to /profile/deleteInvitation, related to applications/dashboard/models/class.invitationmodel.php and applications/dashboard/controllers/class.profilecontroller.php. | ||
| CVE-2010-4266 | Med | 0.40 | 6.1 | 0.01 | Jun 22, 2021 | It was found in vanilla forums before 2.0.10 a potential linkbait vulnerability in dispatcher. | ||
| CVE-2018-17571 | Med | 0.40 | 6.1 | 0.01 | Sep 28, 2018 | Vanilla before 2.6.1 allows XSS via the email field of a profile. | ||
| CVE-2020-8825 | Med | 0.38 | 5.4 | 0.02 | Feb 10, 2020 | index.php?p=/dashboard/settings/branding in Vanilla 2.6.3 allows stored XSS. | ||
| CVE-2019-8279 | Med | 0.35 | 5.4 | 0.01 | Mar 2, 2019 | Multiple stored XSS in Vanilla Forums before 2.5 allow remote attackers to inject arbitrary JavaScript code into any message on forum. | ||
| CVE-2010-4264 | Med | 0.33 | 6.1 | 0.01 | Jun 22, 2021 | It was found in vanilla forums before 2.0.10 a cross-site scripting vulnerability where a filename could contain arbitrary code to execute on the client side. | ||
| CVE-2011-1009 | Med | 0.33 | 6.1 | 0.01 | Feb 5, 2020 | Vanilla Forums 2.0.17.1 through 2.0.17.5 has XSS in /vanilla/index.php via the p parameter. | ||
| CVE-2018-15833 | Med | 0.28 | 4.3 | 0.01 | Aug 26, 2018 | In Vanilla before 2.6.1, the polling functionality allows Insecure Direct Object Reference (IDOR) via the Poll ID, leading to the ability of a single user to select multiple Poll Options (e.g., vote for multiple items). | ||
| CVE-2006-3850 | 0.03 | — | 0.03 | Jul 25, 2006 | PHP remote file inclusion vulnerability in upgrader.php in Vanilla CMS 1.0.1 and earlier, when /conf/old_settings.php exists, allows remote attackers to execute arbitrary PHP code via a URL in the RootDirectory parameter. NOTE: this issue has been disputed by a third party who… | |||
| CVE-2024-54855 | 0.00 | — | 0.00 | Jan 13, 2026 | fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts. | |||
| CVE-2019-9889 | Low | 0.00 | 2.7 | 0.02 | Mar 21, 2019 | In Vanilla before 2.6.4, a flaw exists within the getSingleIndex function of the AddonManager class. The issue results in a require call using a crafted type value, leading to Directory Traversal with File Inclusion. An attacker can leverage this vulnerability to execute code… | ||
| CVE-2012-4954 | 0.00 | — | 0.01 | Nov 15, 2012 | The edit-profile page in Vanilla Forums before 2.1a32 allows remote authenticated users to modify arbitrary profile settings by replacing the UserID value during a man-in-the-middle attack, related to a "parameter manipulation" issue. | |||
| CVE-2011-3812 | 0.00 | — | 0.01 | Sep 24, 2011 | Vanilla 2.0.16 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/Minify/min/utils.php and certain other files. | |||
| CVE-2008-3759 | 0.00 | — | 0.01 | Aug 21, 2008 | Cross-site request forgery (CSRF) vulnerability in ajax/UpdateCheck.php in Vanilla 1.1.4 and earlier has unknown impact and remote attack vectors. | |||
| CVE-2008-3760 | 0.00 | — | 0.01 | Aug 21, 2008 | Cross-site request forgery (CSRF) vulnerability in the sign-out page in Vanilla 1.1.4 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout via a SignOutNow action to people.php. |
- risk 0.64cvss 9.8epss 0.02
An Access Control vulnerability exists in the Facebook, Twitter, and Embedded plugins in Vanilla Forums before 2.0.17.9.
- risk 0.64cvss 9.8epss 0.05
Vanilla 2.6.x before 2.6.4 allows remote code execution.
- risk 0.58cvss 7.5epss 0.84
The from method in library/core/class.email.php in Vanilla Forums before 2.3.1 allows remote attackers to spoof the email domain in sent messages and potentially obtain sensitive information via a crafted HTTP Host header, as demonstrated by a password reset request.
- risk 0.55cvss 8.0epss 0.02
Vanilla Forums below 2.1.5 are affected by CSRF leading to Deleting topics and comments from forums Admin access
- risk 0.49cvss 7.5epss 0.02
An issue exists in Vanilla Forums before 2.0.17.9 due to the way cookies are handled.
- risk 0.47cvss 7.2epss 0.02
Vanilla before 2.5.5 and 2.6.x before 2.6.2 allows Remote Code Execution because authenticated administrators have a reachable call to unserialize in the Gdn_Format class.
- risk 0.42cvss 6.5epss 0.01
Vanilla before 2.6.1 allows SQL injection via an invitationID array to /profile/deleteInvitation, related to applications/dashboard/models/class.invitationmodel.php and applications/dashboard/controllers/class.profilecontroller.php.
- risk 0.40cvss 6.1epss 0.01
It was found in vanilla forums before 2.0.10 a potential linkbait vulnerability in dispatcher.
- risk 0.40cvss 6.1epss 0.01
Vanilla before 2.6.1 allows XSS via the email field of a profile.
- risk 0.38cvss 5.4epss 0.02
index.php?p=/dashboard/settings/branding in Vanilla 2.6.3 allows stored XSS.
- risk 0.35cvss 5.4epss 0.01
Multiple stored XSS in Vanilla Forums before 2.5 allow remote attackers to inject arbitrary JavaScript code into any message on forum.
- risk 0.33cvss 6.1epss 0.01
It was found in vanilla forums before 2.0.10 a cross-site scripting vulnerability where a filename could contain arbitrary code to execute on the client side.
- risk 0.33cvss 6.1epss 0.01
Vanilla Forums 2.0.17.1 through 2.0.17.5 has XSS in /vanilla/index.php via the p parameter.
- risk 0.28cvss 4.3epss 0.01
In Vanilla before 2.6.1, the polling functionality allows Insecure Direct Object Reference (IDOR) via the Poll ID, leading to the ability of a single user to select multiple Poll Options (e.g., vote for multiple items).
- CVE-2006-3850Jul 25, 2006risk 0.03cvss —epss 0.03
PHP remote file inclusion vulnerability in upgrader.php in Vanilla CMS 1.0.1 and earlier, when /conf/old_settings.php exists, allows remote attackers to execute arbitrary PHP code via a URL in the RootDirectory parameter. NOTE: this issue has been disputed by a third party who…
- CVE-2024-54855Jan 13, 2026risk 0.00cvss —epss 0.00
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts.
- risk 0.00cvss 2.7epss 0.02
In Vanilla before 2.6.4, a flaw exists within the getSingleIndex function of the AddonManager class. The issue results in a require call using a crafted type value, leading to Directory Traversal with File Inclusion. An attacker can leverage this vulnerability to execute code…
- CVE-2012-4954Nov 15, 2012risk 0.00cvss —epss 0.01
The edit-profile page in Vanilla Forums before 2.1a32 allows remote authenticated users to modify arbitrary profile settings by replacing the UserID value during a man-in-the-middle attack, related to a "parameter manipulation" issue.
- CVE-2011-3812Sep 24, 2011risk 0.00cvss —epss 0.01
Vanilla 2.0.16 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/Minify/min/utils.php and certain other files.
- CVE-2008-3759Aug 21, 2008risk 0.00cvss —epss 0.01
Cross-site request forgery (CSRF) vulnerability in ajax/UpdateCheck.php in Vanilla 1.1.4 and earlier has unknown impact and remote attack vectors.
- CVE-2008-3760Aug 21, 2008risk 0.00cvss —epss 0.01
Cross-site request forgery (CSRF) vulnerability in the sign-out page in Vanilla 1.1.4 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout via a SignOutNow action to people.php.