First published: Tue Jan 31 2017(Updated: )
Cross-site scripting (XSS) vulnerability in the Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web script or HTML via vectors involving pruning logs.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
MyBB Merge System | <=1.8.6 | |
Mybb Mybb | <=1.8.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.