CVE-2018-25309 MyBB Recent threads 17.0 Persistent Cross-Site Scripting

MyBB Recent threads 17.0 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts by creating threads with crafted subject lines. Attackers can create threads with script tags in the subject parameter to execute arbitrary JavaScript in the browser...

MyBB 安全漏洞

MyBB MyBulletinBoard is a free and web-based forum software developed by MYBB team using PHP and MySQL. The software is easy to use, multi-language support, scalable and so on. A security vulnerability exists in MyBB versions prior to 1.8.38, which stems from exposing stored backup files over HTT...

MyBB SQL Injection Vulnerability (CNVD-2019-18513)

MyBB MyBulletinBoard is a free and Web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A SQL injection vulnerability exists in MyBB versions prior to 1.8.21. The vulnerability stems from a...

MyBB Directory Traversal Vulnerability

MyBB is a popular web-based very good free forum software developed with PHP and MySQL. A directory traversal vulnerability exists in the backend of MyBB versions prior to 1.8.11, which can be exploited by a remote attacker to submit a special directory traversal request to read arbitrary files...