First published: Sun Mar 17 2019(Updated: )
Trash Bin plugin 1.1.3 for MyBB has cross-site scripting (XSS) via a thread subject and a cross-site request forgery (CSRF) via a post subject.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mybb Trash Bin | =1.1.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for the Trash Bin plugin in MyBB is CVE-2018-14575.
The severity of CVE-2018-14575 is high with a CVSS score of 8.8.
The affected software is MyBB Trash Bin plugin 1.1.3.
The vulnerability in Trash Bin plugin manifests as cross-site scripting (XSS) through a thread subject and cross-site request forgery (CSRF) through a post subject.
You can find more information about CVE-2018-14575 at the following references: [reference link1], [reference link2], [reference link3].