Description

MyBB 1.8.14 has XSS via the Title or Description field on the Edit Forum screen.

Remediation

References

CVE-2018-6844

Related Vulnerabilities

WordPress Plugin Simple Banner Cross-Site Scripting (2.10.3)

SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2024-38094)

WordPress Plugin BA Book Everything Cross-Site Scripting (1.3.24)

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3963)

Oracle Database Server CVE-2011-0852 Vulnerability (CVE-2011-0852)

Severity

Medium

Classification

CVE-2018-6844 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities