Description

Cross-site scripting (XSS) vulnerability in the MyCode editor in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2015-2333

Related Vulnerabilities

WordPress Plugin Sidebar Login Cross-Site Scripting (2.3.6)

Django Improper Input Validation Vulnerability (CVE-2014-3730)

MyBB Improper Privilege Management Vulnerability (CVE-2018-1000503)

Jboss EAP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2010-3878)

WordPress 6.1.x Cross-Site Scripting (6.1 - 6.1.5)

Severity

Medium

Classification

CVE-2015-2333 CWE-707

Tags

Missing Update Known Vulnerabilities