Description

Cross-site scripting (XSS) vulnerability in MyBB 1.2.x before 1.2.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving search.php.

Remediation

References

CVE-2008-3334

Related Vulnerabilities

Oracle Application Server CVE-2007-0280 Vulnerability (CVE-2007-0280)

WordPress Plugin MediaPress Security Bypass (1.1.9)

Opencart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-1027)

WordPress Plugin The Easiest WordPress Media Manager-WP Media Manager Lite includes Backdoor [Only if downloaded via the vendor website] (1.1.2)

Seo Panel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-28420)

Severity

Medium

Classification

CVE-2008-3334 CWE-707

Tags

Missing Update Known Vulnerabilities