First published: Thu Jul 19 2018(Updated: )
The New Threads plugin before 1.2 for MyBB has XSS.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mybb New Threads | <1.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-14392 refers to a Cross-Site Scripting (XSS) vulnerability in the New Threads plugin for MyBB.
CVE-2018-14392 has a severity keyword of 'medium' and a severity value of 6.1 on the CVSS scale.
CVE-2018-14392 affects MyBB through the New Threads plugin version 1.2 and earlier, allowing for potential XSS attacks.
To fix CVE-2018-14392, update the New Threads plugin to version 1.2 or later.
More information about CVE-2018-14392 can be found at the following references: [1] https://community.mybb.com/mods.php?action=changelog&pid=1143 [2] https://www.exploit-db.com/exploits/45057/