Lucene search
K

4 matches found

0day.today
0day.today
added 2019/03/19 12:0 a.m.154 views

MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=1231 Version: 1.32 Tested on: Ubuntu 18.04 CVE:...

4.3CVSS0.03393EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/03/19 12:0 a.m.90 views

MyBB Upcoming Events 1.32 Cross Site Scripting

Exploit Title: MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting Date: 3/8/2019 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=1231 Version: 1.32 Tested on: Ubuntu 18.04 CVE: CVE-2019-9650 1. Description: This plugin...

4.3CVSS6.4AI score0.03393EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/03/19 12:0 a.m.48 views

MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting

Exploit Title: MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting Date: 3/8/2019 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=1231 Version: 1.32 Tested on: Ubuntu 18.04 CVE: CVE-2019-9650 1. Description: This plugin...

6.1CVSS6.3AI score0.03393EPSS
Exploits5
CVE
CVE
added 2019/03/11 1:0 a.m.59 views

CVE-2019-9650

The CVE-2019-9650 entry describes an XSS vulnerability in the MyBB Upcoming Events plugin (prior to version 1.33). The flaw resides in upcoming_events.php where a crafted event name can trigger cross-site scripting. Public details across connected sources confirm the affected component and versio...

6.1CVSS5.8AI score0.03393EPSS
Exploits5References4Affected Software1
Rows per page
Query Builder