First published: Sun Mar 19 2006(Updated: )
Cross-site scripting (XSS) vulnerability in member.php in MyBulletinBoard (MyBB) 1.04 allows remote attackers to inject arbitrary web script or HTML via the url parameter, a different vulnerability than CVE-2006-1272. NOTE: 1.10 was later reported to be vulnerable.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mybulletinboard Mybulletinboard | =1.10 | |
Mybulletinboard Mybulletinboard | =1.0_final | |
Mybulletinboard Mybulletinboard | =rc3 | |
Mybulletinboard Mybulletinboard | =rc2 | |
Mybulletinboard Mybulletinboard | =rc1 | |
Mybulletinboard Mybulletinboard | =1.0.3 | |
Mybulletinboard Mybulletinboard | =rc4 | |
Mybulletinboard Mybulletinboard | =1.0_pr2 | |
Mybulletinboard Mybulletinboard | =1.0.1 | |
Mybulletinboard Mybulletinboard | =1.0.4 | |
Mybulletinboard Mybulletinboard | =1.0.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.