Описание
MyBB 1.8.31 has a (issue 2 of 2) cross-site scripting (XSS) vulnerabilities in the post Attachments interface allow attackers to inject HTML by persuading the user to upload a file with specially crafted name
Ссылки
- PatchThird Party Advisory
- Product
- PatchThird Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 1.8.32 (исключая)
cpe:2.3:a:mybb:mybb:*:*:*:*:*:*:*:*
EPSS
Процентиль: 46%
0.00234
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79
EPSS
Процентиль: 46%
0.00234
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79