Description

Cross-site scripting (XSS) vulnerability in MyBB 1.2.x before 1.2.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving search.php.

Remediation

References

CVE-2008-3334

Related Vulnerabilities

WordPress Plugin Contact Form 7 Database Addon-CFDB7 CSV Injection (1.2.5.5)

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-5296)

WebLogic Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2020-8908)

WordPress Plugin Simply Static Multiple Vulnerabilities (1.7.0)

MySQL CVE-2022-21351 Vulnerability (CVE-2022-21351)

Severity

Medium

Classification

CVE-2008-3334 CWE-707

Tags

Missing Update Known Vulnerabilities