Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-3578)

Description

MyBB 1.8.19 has XSS in the resetpassword function.

Remediation

References

Related Vulnerabilities

WordPress Plugin Relevant-Related Posts by BestWebSoft Cross-Site Scripting (1.0.7)

SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-8155)

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16222)

PHP Other Vulnerability (CVE-2005-3388)

osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-7193)

Severity

Medium

Classification

CVE-2019-3578 CWE-707

Tags

Missing Update Known Vulnerabilities