Description MyBB 1.8.14 has XSS via the Title or Description field on the Edit Forum screen. Remediation References CVE-2018-6844 Related Vulnerabilities PHP Improper Input Validation Vulnerability (CVE-2010-3870) WordPress Plugin Csv2WPeC Coupon Arbitrary File Upload (1.1) Oracle Database Server CVE-2006-0282 Vulnerability (CVE-2006-0282) Magento CVE-2021-36021 Vulnerability (CVE-2021-36021) WordPress Plugin Contact Form to DB by BestWebSoft-Messages Database For WordPress SQL Injection (1.7.2) Severity Medium Classification CVE-2018-6844 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities