Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stored cross-site scripting (XSS) vulnerability in the component install\index.php of MyBB v1.8.38 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website Name parameter. NOTE: this is disputed by the Supplier because Website Name can only be set by an administrator, who may use JavaScript if they wish.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MyBB 安全漏洞
Vulnerability Description
MyBB(MyBulletinBoard)是MYBB团队的一套用PHP和MySQL开发的免费且基于Web的论坛软件。该软件具有简单易用、支持多国语言、可扩展等特点。 MyBB v1.8.38版本存在安全漏洞,该漏洞源于存在存储型跨站脚本(XSS)漏洞,攻击者可以通过注入精心设计的有效载荷来执行任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A