34 matches found
MyBB 跨站脚本漏洞
MyBB MyBulletinBoard is a free and web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A cross-site scripting vulnerability exists in MyBB version 1.8.26, which stems from a stored cross-si...
MyBB 跨站脚本漏洞
MyBB MyBulletinBoard is a free and web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A cross-site scripting vulnerability exists in MyBB version 1.8.26, which stems from a stored cross-si...
MyBB 跨站脚本漏洞
MyBB MyBulletinBoard is a free and web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A cross-site scripting vulnerability exists in MyBB version 1.8.26, which stems from a stored cross-si...
PT-2025-52715
Name of the Vulnerable Software and Affected Versions myBB Forums version 1.8.26 Description myBB Forums version 1.8.26 has a stored cross-site scripting issue in the forum announcement system. Authenticated administrators can inject malicious scripts when creating announcements. Attackers can...
CVE-2021-27889
Cross-site Scripting XSS vulnerability in MyBB before 1.8.26 via Nested Auto URL when parsing messages...
BIT-MYBB-2021-27946
SQL Injection vulnerability in MyBB before 1.8.26 via poll vote count. issue 1 of 3...
myBB forums 1.8.26 - Stored Cross-Site Scripting Vulnerability
Exploit Title: myBB forums 1.8.26 - Stored Cross-Site Scripting XSS Exploit Author: Andrey Stoykov Software Link: https://mybb.com/versions/1.8.26/ Version: 1.8.26 Tested on: Ubuntu 20.04 Stored XSS 1: To reproduce do the following: 1. Login as administrator user 2. Browse to "Templates and Style...
myBB forums 1.8.26 Cross Site Scripting
Exploit Title: myBB forums 1.8.26 - Stored Cross-Site Scripting XSS Exploit Author: Andrey Stoykov Software Link: https://mybb.com/versions/1.8.26/ Version: 1.8.26 Tested on: Ubuntu 20.04 Stored XSS 1: To reproduce do the following: 1. Login as administrator user 2. Browse to "Templates and Style...
Critical RCE Flaw Reported in MyBB Forum Software—Patch Your Sites
A pair of critical vulnerabilities in a popular bulletin board software called MyBB could have been chained together to achieve remote code execution RCE without the need for prior access to a privileged account. The flaws, which were discovered by independent security researchers Simon Scannell...
MyBB SQL Injection Vulnerability (CNVD-2021-25711)
MyBB is a free open source forum software. A SQL injection vulnerability exists in the Copy Forums feature of the Forum Manager in versions of MyBB prior to 1.8.26. No detailed vulnerability details are available at this time...
MyBB SQL Injection Vulnerability (CNVD-2021-25712)
MyBB is a free open source forum software. A SQL injection vulnerability exists in user groups in versions of MyBB prior to 1.8.26. No detailed vulnerability details are provided at this time...
MyBB Cross-Site Scripting Vulnerability (CNVD-2021-22153)
MyBB is a free open source forum software. A cross-site scripting vulnerability exists in the parsing of messages in Nested Auto URLs in versions of MyBB prior to 1.8.26. No details of the vulnerability are provided at this time...
MyBB SQL Injection Vulnerability (CNVD-2021-25709)
MyBB is a free open source forum software. A SQL injection vulnerability exists in the theme properties of MyBB versions prior to 1.8.26. No detailed vulnerability details are provided at this time...
MyBB SQL Injection Vulnerability (CNVD-2021-25710)
MyBB is a free open source forum software. A SQL injection vulnerability exists in vote counting in versions of MyBB prior to 1.8.26, no details of the vulnerability are available at this time...
CVE-2021-27949
Cross-site Scripting vulnerability in MyBB before 1.8.26 via Custom moderator tools...
CVE-2021-27946
SQL Injection vulnerability in MyBB before 1.8.26 via poll vote count. issue 1 of 3...
CVE-2021-27890
SQL Injection vulnerablity in MyBB before 1.8.26 via theme properties included in theme XML files...
CVE-2021-27946
SQL Injection vulnerability in MyBB before 1.8.26 via poll vote count. issue 1 of 3...
Cross site scripting
Cross-site Scripting vulnerability in MyBB before 1.8.26 via Custom moderator tools...
Sql injection
SQL Injection vulnerability in MyBB before 1.8.26 via the Copy Forum feature in Forum Management. issue 2 of 3...