Description
Cross-site scripting (XSS) vulnerability in misc.php in MyBB (aka MyBulletinBoard) before 1.6.12 allows remote attackers to inject arbitrary web script or HTML via the editor parameter in a smilie list popup.
Remediation
References
Related Vulnerabilities
ReviveAdserver Improper Access Control Vulnerability (CVE-2015-7367)
TYPO3 Improper Authentication Vulnerability (CVE-2011-4628)
WebLogic Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2020-8908)
Oracle JRE CVE-2023-22049 Vulnerability (CVE-2023-22049)
Oracle Application Server Other Vulnerability (CVE-2005-3204)