0.001 Low
EPSS
Percentile
46.6%
A reflected XSS vulnerability in the ModCP Profile Editor in MyBB before 1.8.20 allows remote attackers to inject JavaScript via the βusernameβ parameter.