EPSS
Percentile
54.9%
Cross-site scripting (XSS) vulnerability in the Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
www.openwall.com/lists/oss-security/2016/11/10/8
www.openwall.com/lists/oss-security/2016/11/18/1
www.securityfocus.com/bid/94396
blog.mybb.com/2016/10/17/mybb-1-8-8-merge-system-1-8-8-release/