Description
Cross-site scripting (XSS) vulnerability in the quick edit function in xmlhttp.php in MyBB (aka MyBulletinBoard) before 1.8.5 allows remote attackers to inject arbitrary web script or HTML via the content of a post.
Remediation
References
Related Vulnerabilities
WordPress Plugin Business Hours Pro Arbitrary File Upload (5.5.0)
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-1000658)
WordPress Plugin YITH Maintenance Mode Multiple Cross-Site Scripting Vulnerabilities (1.3.8)
MySQL CVE-2020-14773 Vulnerability (CVE-2020-14773)
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-16397)