CVE-2022-28353

In the External Redirect Warning Plugin 1.3 for MyBB, the redirect URL aka external.php?url= is vulnerable to XSS...

MyBB External Redirect Warning Plugin 跨站脚本漏洞

MyBB MyBulletinBoard is a free and web-based forum software developed by MYBB team using PHP and MySQL. The software is easy to use, supports multi-language, scalable and so on. A security vulnerability exists in MyBB External Redirect Warning Plugin version 1.3, which originates from the presenc...

CVE-2022-28353

The CVE-2022-28353 entry concerns the MyBB External Redirect Warning Plugin (version 1.3). The vulnerability is an XSS in the redirect URL parameter external.php?url=, allowing injected scripts when users follow the redirect. The affected component is the redirect handling code for external.php, ...

PT-2023-12939 · Mybb · External Redirect Warning Plugin

Name of the Vulnerable Software and Affected Versions: External Redirect Warning Plugin version 1.3 for MyBB Description: The issue concerns a problem where the redirect URL, also known as external.php?url=, is susceptible to XSS. This means an attacker could potentially inject malicious scripts...