Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross Site Scripting (XSS) in MyBB v1.8.20 allows remote attackers to inject arbitrary web script or HTML via the "Description" field found in the "Add New Forum" page by doing an authenticated POST HTTP request to '/Upload/admin/index.php?module=forum-management&action=add'.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MyBB 跨站脚本漏洞
Vulnerability Description
MyBB(MyBulletinBoard)是MyBB(MYBB)团队的开发的一套用PHP和MySQL开发的免费且基于Web的论坛软件。该软件具有简单易用、支持多国语言、可扩展等特点。 MyBB 存在安全漏洞,该漏洞源于在MyBB的v1.8.20版本中存在跨站脚本(XSS)漏洞。攻击者可利用该漏洞通过“添加新论坛”页面的“描述”字段注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A