What is the severity of CVE-2011-5132?

CVE-2011-5132 is classified as a medium severity vulnerability due to its potential to allow attackers to execute arbitrary scripts via usernames.

How do I fix CVE-2011-5132?

To fix CVE-2011-5132, update MyBB to version 1.6.5 or later where the vulnerability is patched.

What versions are affected by CVE-2011-5132?

CVE-2011-5132 affects MyBB versions prior to 1.6.5, including all versions up to and including 1.6.4.

What type of vulnerability is CVE-2011-5132?

CVE-2011-5132 is a cross-site scripting (XSS) vulnerability that allows the injection of arbitrary web scripts.

Can CVE-2011-5132 be exploited remotely?

Yes, attackers can exploit CVE-2011-5132 remotely by injecting malicious scripts through vulnerable usernames.

Vulnerability/
CVE-2011-5132

medium

4.3

CWE

30/8/2012

7/8/2024

CVE-2011-5132: XSS

First published: Thu Aug 30 2012(Updated: )

Cross-site scripting (XSS) vulnerability in MyBB before 1.6.5 allows remote attackers to inject arbitrary web script or HTML via vectors related to "usernames via AJAX."

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
MyBB	=1.2.10
MyBB	=1.4.11
MyBB	=1.2.8
MyBB	=1.4.3
MyBB	=1.4.12
MyBB	=1.1.1
MyBB	=1.4.5
MyBB	=1.1.3
MyBB	=1.2.2
MyBB	=1.6.1
MyBB	=1.4.14
MyBB	=1.2.9
MyBB	=1.4.8
MyBB	=1.4.15
MyBB	=1.2.1
MyBB	=1.1.6
MyBB	=1.2.6
MyBB	=1.4.0
MyBB	=1.2.0
MyBB	=1.4.1
MyBB	=1.5.2
MyBB	=1.2.14
MyBB	=1.3-pre-1.0
MyBB	=1.6.0
MyBB	=1.4.9
MyBB	=1.2.5
MyBB	=1.4.2
MyBB	=1.1.8
MyBB	=1.5.1
MyBB	=1.2.11
MyBB	=1.1.5
MyBB	=1.2.13
MyBB	=1.6.3
MyBB	=1.4.6
MyBB	=1.1.0
MyBB	=1.2.3
MyBB	=1.4.10
MyBB	=1.4.4
MyBB	=1.4.7
MyBB	=1.2.7
MyBB	=1.4.16
MyBB	=1.1.7
MyBB	=1.1.4
MyBB	<=1.6.4
MyBB	=1.4.13
MyBB	=1.2.4
MyBB	=1.2
MyBB	=1.2.12
MyBB	=1.6.2
MyBB	=1.1.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-5132?
CVE-2011-5132 is classified as a medium severity vulnerability due to its potential to allow attackers to execute arbitrary scripts via usernames.
How do I fix CVE-2011-5132?
To fix CVE-2011-5132, update MyBB to version 1.6.5 or later where the vulnerability is patched.
What versions are affected by CVE-2011-5132?
CVE-2011-5132 affects MyBB versions prior to 1.6.5, including all versions up to and including 1.6.4.
What type of vulnerability is CVE-2011-5132?
CVE-2011-5132 is a cross-site scripting (XSS) vulnerability that allows the injection of arbitrary web scripts.
Can CVE-2011-5132 be exploited remotely?
Yes, attackers can exploit CVE-2011-5132 remotely by injecting malicious scripts through vulnerable usernames.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/author
agent/last-modified-date
agent/severity
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
agent/weakness
vendor/mybb
canonical/mybb
version/mybb/1.2.10
version/mybb/1.4.11
version/mybb/1.2.8
version/mybb/1.4.3
version/mybb/1.4.12
version/mybb/1.1.1
version/mybb/1.4.5
version/mybb/1.1.3
version/mybb/1.2.2
version/mybb/1.6.1
version/mybb/1.4.14
version/mybb/1.2.9
version/mybb/1.4.8
version/mybb/1.4.15
version/mybb/1.2.1
version/mybb/1.1.6
version/mybb/1.2.6
version/mybb/1.4.0
version/mybb/1.2.0
version/mybb/1.4.1
version/mybb/1.5.2
version/mybb/1.2.14
version/mybb/1.3-pre-1.0
version/mybb/1.6.0
version/mybb/1.4.9
version/mybb/1.2.5
version/mybb/1.4.2
version/mybb/1.1.8
version/mybb/1.5.1
version/mybb/1.2.11
version/mybb/1.1.5
version/mybb/1.2.13
version/mybb/1.6.3
version/mybb/1.4.6
version/mybb/1.1.0
version/mybb/1.2.3
version/mybb/1.4.10
version/mybb/1.4.4
version/mybb/1.4.7
version/mybb/1.2.7
version/mybb/1.4.16
version/mybb/1.1.7
version/mybb/1.1.4
version/mybb/1.6.4
version/mybb/1.4.13
version/mybb/1.2.4
version/mybb/1.2
version/mybb/1.2.12
version/mybb/1.6.2
version/mybb/1.1.2