Description
Cross-site scripting (XSS) vulnerability in the Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Events Widgets For Elementor And The Events Calendar Security Bypass (1.4.3)
WordPress Plugin LiveGrounds 'uid' Parameter Cross-Site Scripting (0.42)
WordPress Plugin WooCommerce Security Bypass (2.1.7)
MySQL CVE-2019-2920 Vulnerability (CVE-2019-2920)
WordPress Plugin Splashing Images Multiple Vulnerabilities (2.1)