Description MyBB 1.8.19 has XSS in the resetpassword function. Remediation References CVE-2019-3578 Related Vulnerabilities WordPress Plugin Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder SQL Injection (1.15.5) WordPress Plugin Business Directory-Easy Listing Directories for WordPress Multiple Vulnerabilities (5.10.1) WordPress Plugin Gravity Forms SQL Injection (1.9.3.5) WordPress Plugin Easy2Map Multiple Vulnerabilities (1.2.9) Drupal Core 8.3.0 Security Bypass (8.3.0) Severity Medium Classification CVE-2019-3578 CWE-707 Tags Missing Update Known Vulnerabilities