CVE-2026-9357

Name of the Vulnerable Software and Affected Versions vBulletin versions 6.x

Description A flaw in the Login component allows a remote attacker to perform a manipulation that results in cross-site scripting (XSS), which is a technique where malicious scripts are injected into trusted websites.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.