Description

Cross-site scripting (XSS) vulnerability in the MyCode editor in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2015-2333

Related Vulnerabilities

WordPress Plugin TheCartPress eCommerce Shopping Cart Multiple Vulnerabilities (1.5.3.6)

Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-25608)

PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2190)

Serendipity Other Vulnerability (CVE-2005-1450)

PHP Resource Management Errors Vulnerability (CVE-2012-0830)

Severity

Medium

Classification

CVE-2015-2333 CWE-707

Tags

Missing Update Known Vulnerabilities