Lucene search
GoogleOSV:BIT-MYBB-2022-43707HistoryMar 06, 2024 - 10:58 a.m.
BIT-mybb-2022-43707
2024-03-0610:58:06
Google
osv.dev
7
mybb
cross-site scripting
xss
vulnerability
visual mycode editor
sceditor
remote attackers
inject html
user input
stored data
software
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
5.7
Confidence
High
EPSS
0.001
Percentile
44.7%
MyBB 1.8.31 has a Cross-site scripting (XSS) vulnerability in the visual MyCode editor (SCEditor) allows remote attackers to inject HTML via user input or stored data
Related
nvd
nvd
CVE-2022-43707
2022-11-22 00:15:10
prion
prion
Cross site scripting
2022-11-22 00:15:00
cnvd
cnvd
MyBB MyCode Editor Cross-Site Scripting Vulnerability
2022-11-24 00:00:00
cvelist
cvelist
CVE-2022-43707
2022-11-21 00:00:00
cve
cve
CVE-2022-43707
2022-11-22 00:15:10
openvas
openvas
MyBB < 1.8.32 Multiple Vulnerabilities
2022-12-15 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
5.7
Confidence
High
EPSS
0.001
Percentile
44.7%
Related for OSV:BIT-MYBB-2022-43707