MyBB Multiple Cross-Site Scripting and SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/13827/info MyBB is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. The application is prone to...

CVE-2010-4522

Multiple cross-site scripting XSS vulnerabilities in MyBB aka MyBulletinBoard 1.4.14, and 1.6.x before 1.6.1, allow remote attackers to inject arbitrary web script or HTML via vectors related to 1 editpost.php, 2 member.php, and 3 newreply.php...

CVE-2005-3512

Cross-site scripting XSS vulnerability in index.php in VUBB alpha rc1 allows remote attackers to inject arbitrary web script or HTML via the t parameter in a newreply action...

CVE-2005-3512

Vulnerability: CVE-2005-3512 affects VUBB alpha rc1 (index.php) where the t parameter in the newreply action is vulnerable to reflected XSS. Root cause is improper handling of the t parameter in the newreply flow, enabling injection of arbitrary script/HTML. Impact per provided details is partial...

PT-2005-4308 · Vubb · Vubb

Name of the Vulnerable Software and Affected Versions: VUBB alpha version rc1 Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML via the t parameter in a "newreply" action. This can occur in the index.php file. Recommendations: F...