Vanillaforums : Security Vulnerabilities, CVEs, CVSS score >= 8
Vanilla 2.6.x before 2.6.4 allows remote code execution.
Max CVSS
9.8
EPSS Score
4.29%
Published
2018-11-03
Updated
2018-12-26
Vanilla Forums below 2.1.5 are affected by CSRF leading to Deleting topics and comments from forums Admin access
Max CVSS
8.0
EPSS Score
0.09%
Published
2018-01-02
Updated
2018-01-17
An Access Control vulnerability exists in the Facebook, Twitter, and Embedded plugins in Vanilla Forums before 2.0.17.9.
Max CVSS
9.8
EPSS Score
0.19%
Published
2020-01-22
Updated
2020-01-28
3 vulnerabilities found