3 matches found
MyBB < 1.6.12 Multiple Vulnerabilities
Binary data 8628.prm...
CVE-2013-7275
Cross-site scripting XSS vulnerability in misc.php in MyBB aka MyBulletinBoard before 1.6.12 allows remote attackers to inject arbitrary web script or HTML via the editor parameter in a smilie list popup...
CVE-2013-7275
CVE-2013-7275 describes a cross-site scripting vulnerability in MyBB (MyBulletinBoard) before version 1.6.12. The flaw is in misc.php where the editor parameter in the smilie list popup can be manipulated to inject arbitrary script/HTML. Connected sources confirm the affected component and the ro...