CVE-2018-14724

In the Ban List plugin 1.0 for MyBB, any forum user with mod privileges can ban users and input an XSS payload into the ban reason, which is executed on the bans.php page...

CVE-2018-14724

In the Ban List plugin 1.0 for MyBB, any forum user with mod privileges can ban users and input an XSS payload into the ban reason, which is executed on the bans.php page...

CVE-2018-14724

CVE-2018-14724 – MyBB Ban List 1.0 (Ban List plugin) :Vulnerability exists in the Ban List plugin for MyBB where any forum user with moderator privileges can ban others and inject an XSS payload into the ban reason, which is executed on bans.php. Public materials confirm the affected component (B...

MyBB Bans List 1.0 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: MyBB Bans List - Cross Site Scripting Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=423 Version: 1.0 Tested on: Ubuntu 18.04 CVE: CVE-2018-14724 1...

MyBB Bans List 1.0 - Cross-Site Scripting

MyBB Bans List 1.0 - Cross-Site Scripting Exploit Title: MyBB Bans List - Cross Site Scripting Date: 7/25/2018 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=423 Version: 1.0 Tested on: Ubuntu 18.04 CVE: CVE-2018-14724 1...