Description
Cross-site scripting (XSS) vulnerability in the Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Calendar_plugin Cross-Site Scripting (1.0)
WordPress Plugin Lockdown WP Admin Unspecified Vulnerability (1.1.2)
WordPress Plugin Bitcoin/Altcoin Faucet Cross-Site Request Forgery (1.6.0)
WordPress 3.7.x Prototype Pollution (3.7 - 3.7.37)
WordPress Plugin Fourteen Extended Cross-Site Scripting (1.2.31)