Lucene search

K

MitreCVELIST:CVE-2021-27889

HistoryMar 15, 2021 - 4:57 p.m.

CVE-2021-27889

2021-03-1516:57:02

mitre

www.cve.org

9

mybb

cross-site scripting

xss

nested auto url

parsing messages

AI Score

7

Confidence

High

EPSS

0.003

Percentile

68.7%

Cross-site Scripting (XSS) vulnerability in MyBB before 1.8.26 via Nested Auto URL when parsing messages.

References

packetstormsecurity.com/files/161908/MyBB-1.8.25-Remote-Command-Execution.html

blog.sonarsource.com/mybb-remote-code-execution-chain

github.com/mybb/mybb/security/advisories/GHSA-xhj7-3349-mqcm

AI Score

7

Confidence

High

EPSS

0.003

Percentile

68.7%

Related for CVELIST:CVE-2021-27889

cve1 nvd1 osv1 prion1 exploitdb2 githubexploit1 zdt2 packetstorm2 seebug1 openvas1 thn1