Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the Admin Control Panel (ACP) in MyBB (aka MyBulletinBoard) before 1.6.7 allows remote administrators to inject arbitrary web script or HTML via a malformed file name in an orphaned attachment.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MyBB ACP 跨站脚本漏洞
Vulnerability Description
MyBB(又名MyBulletinBoard)是MyBB团队开发的一套用PHP和MySQL开发的免费且基于Web的论坛软件。该软件具有简单易用、支持多国语言、可扩展等特点。 MyBB(又名MyBulletinBoard)1.6.7之前版本中的Admin Control Panel (ACP)中存在跨站脚本(XSS)漏洞。远程攻击者可利用该漏洞通过在孤立附件中的恶意文件名注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A