2131 matches found
CVE-2023-53976
myBB Forums 1.8.26 contains a stored cross-site scripting vulnerability in the template management system that allows authenticated administrators to inject malicious scripts when creating new templates. Attackers can exploit this vulnerability by inserting script payloads in the template title...
CVE-2023-53979
Summary of the vulnerability (CVE-2023-53979) : MyBB 1.8.32 contains a chained vulnerability that authenticated administrators can exploit to bypass avatar upload restrictions and achieve remote code execution. The attack leverages the ability to modify upload path settings, upload a PHP-embedded...
CVE-2023-53978 myBB Forums 1.8.26 Stored Cross-Site Scripting via Forum Announcements
myBB Forums 1.8.26 contains a stored cross-site scripting vulnerability in the forum announcement system that allows authenticated administrators to inject malicious scripts when creating announcements. Attackers can exploit this vulnerability by inserting script payloads in the announcement titl...
CVE-2023-53977 myBB Forums 1.8.26 Stored Cross-Site Scripting via Forum Management
myBB Forums 1.8.26 contains a stored cross-site scripting vulnerability in the forum management system that allows authenticated administrators to inject malicious scripts when creating new forums. Attackers can exploit this vulnerability by inserting script payloads in the forum title field when...
CVE-2023-53977 myBB Forums 1.8.26 Stored Cross-Site Scripting via Forum Management
myBB Forums 1.8.26 contains a stored cross-site scripting vulnerability in the forum management system that allows authenticated administrators to inject malicious scripts when creating new forums. Attackers can exploit this vulnerability by inserting script payloads in the forum title field when...
CVE-2023-53978 myBB Forums 1.8.26 Stored Cross-Site Scripting via Forum Announcements
myBB Forums 1.8.26 contains a stored cross-site scripting vulnerability in the forum announcement system that allows authenticated administrators to inject malicious scripts when creating announcements. Attackers can exploit this vulnerability by inserting script payloads in the announcement titl...
CVE-2023-53977
CVE-2023-53977 affects MyBB Forums 1.8.26. It is a stored XSS in the forum management feature: authenticated admins can inject scripts via the forum title when creating new forums, causing script execution on forum list views. Vulnerability origin is the forum management input processing. Remedia...
CVE-2023-53978
Summary: CVE-2023-53978 affects MyBB Forums 1.8.26 and is a stored cross-site scripting vulnerability in the forum announcement system. Vulnerable component: announcement creation flow via the Forums and Posts > Forum Announcements interface, specifically the announcement title field. Root cau...
CVE-2023-53979 MyBB 1.8.32 Authenticated Remote Code Execution via Chained Vulnerabilities
MyBB 1.8.32 contains a chained vulnerability that allows authenticated administrators to bypass avatar upload restrictions and execute arbitrary code. Attackers can modify upload path settings, upload a malicious PHP-embedded image file, and execute commands through the language configuration...
CVE-2023-53979 MyBB 1.8.32 Authenticated Remote Code Execution via Chained Vulnerabilities
MyBB 1.8.32 contains a chained vulnerability that allows authenticated administrators to bypass avatar upload restrictions and execute arbitrary code. Attackers can modify upload path settings, upload a malicious PHP-embedded image file, and execute commands through the language configuration...
CVE-2023-53976
Summary: CVE-2023-53976 affects MyBB Forums 1.8.26 with a stored XSS vulnerability in the template management system. Authenticated administrators can inject malicious scripts by placing payloads in the template title field when creating new templates via the UI path “Templates and Style → Templa...
CVE-2023-53976 myBB Forums 1.8.26 Stored Cross-Site Scripting via Template Management
myBB Forums 1.8.26 contains a stored cross-site scripting vulnerability in the template management system that allows authenticated administrators to inject malicious scripts when creating new templates. Attackers can exploit this vulnerability by inserting script payloads in the template title...
CVE-2023-53976 myBB Forums 1.8.26 Stored Cross-Site Scripting via Template Management
myBB Forums 1.8.26 contains a stored cross-site scripting vulnerability in the template management system that allows authenticated administrators to inject malicious scripts when creating new templates. Attackers can exploit this vulnerability by inserting script payloads in the template title...
MyBB 跨站脚本漏洞
MyBB MyBulletinBoard is a free and web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A cross-site scripting vulnerability exists in MyBB version 1.8.26, which stems from a stored cross-si...
PT-2025-52714
Name of the Vulnerable Software and Affected Versions myBB Forums version 1.8.26 Description myBB Forums version 1.8.26 contains a stored cross-site scripting issue in the forum management system. Authenticated administrators can inject malicious scripts when creating new forums. Attackers can...
MyBB 跨站脚本漏洞
MyBB MyBulletinBoard is a free and web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A cross-site scripting vulnerability exists in MyBB version 1.8.26, which stems from a stored cross-si...
MyBB 跨站脚本漏洞
MyBB MyBulletinBoard is a free and web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A cross-site scripting vulnerability exists in MyBB version 1.8.26, which stems from a stored cross-si...
PT-2025-52715
Name of the Vulnerable Software and Affected Versions myBB Forums version 1.8.26 Description myBB Forums version 1.8.26 has a stored cross-site scripting issue in the forum announcement system. Authenticated administrators can inject malicious scripts when creating announcements. Attackers can...
PT-2025-52713
Name of the Vulnerable Software and Affected Versions myBB Forums version 1.8.26 Description myBB Forums version 1.8.26 has a stored cross-site scripting issue in the template management system. Authenticated administrators can inject malicious scripts when creating new templates. An attacker can...
EUVD-2014-9066
Malware in sbrugna...