8 matches found
MyBB Threads to Link plugin cross-site scripting vulnerability
MyBB aka MyBulletinBoard is a free and web-based forum software developed by the MyBB team using PHP and MySQL.Threads to Link plugin is a use in which a timeline link to add plug-ins. A cross-site scripting vulnerability exists in version 1.3 of the MyBB Threads to Link plugin, which stems from...
CVE-2018-10365
An XSS issue was discovered in the Threads to Link plugin 1.3 for MyBB. When editing a thread, the user is given the option to convert the thread to a link. The thread link input box is not properly sanitized...
CVE-2018-10365
An XSS issue was discovered in the Threads to Link plugin 1.3 for MyBB. When editing a thread, the user is given the option to convert the thread to a link. The thread link input box is not properly sanitized...
Cross site scripting
An XSS issue was discovered in the Threads to Link plugin 1.3 for MyBB. When editing a thread, the user is given the option to convert the thread to a link. The thread link input box is not properly sanitized...
CVE-2018-10365
An XSS issue was discovered in the Threads to Link plugin 1.3 for MyBB. When editing a thread, the user is given the option to convert the thread to a link. The thread link input box is not properly sanitized...
CVE-2018-10365
CVE-2018-10365 affects the MyBB Threads to Link plugin for MyBB (v1.3). The vulnerability arises from improper sanitization of the Thread Link input during thread edits, enabling cross-site scripting (XSS). Connected sources confirm a persistent XSS PoC exists (Exploit-DB) and show a code fix sug...
MyBB Threads to Link Plugin 1.3 - Cross-Site Scripting
MyBB Threads to Link Plugin 1.3 - Cross-Site Scripting Exploit Title: MyBB Threads to Link Plugin v1.3 - Persistent XSS Date: 3/15/2018 Author: 0xB9 Contact: luxorforums.com/User-0xB9 or 0xB9atprotonmail.com Software Link: https://community.mybb.com/mods.php?action=view&pid=1065 Version: v1.3...
MyBB Threads to Link Plugin 1.3 - Cross-Site Scripting
Exploit Title: MyBB Threads to Link Plugin v1.3 - Persistent XSS Date: 3/15/2018 Author: 0xB9 Contact: luxorforums.com/User-0xB9 or 0xB9atprotonmail.com Software Link: https://community.mybb.com/mods.php?action=view&pid=1065 Version: v1.3 Tested on: Ubuntu 17.10 CVE: CVE-2018-10365 1. Description...