Описание
The Export User plugin through 2.0 for MyBB allows XSS during the process of an admin generating DSGVO data for a user, via the Custom User Title, Location, or Bio field. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Ссылки
- Third Party AdvisoryVDB Entry
- Broken Link
- Permissions Required
- Third Party AdvisoryVDB Entry
- Broken Link
- Permissions Required
Уязвимые конфигурации
Конфигурация 1Версия до 2.0 (включая)
cpe:2.3:a:export_user_project:export_user:*:*:*:*:*:mybb:*:*
EPSS
Процентиль: 33%
0.00133
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
почти 3 года назад
** UNSUPPORTED WHEN ASSIGNED ** The Export User plugin through 2.0 for MyBB allows XSS during the process of an admin generating DSGVO data for a user, via the Custom User Title, Location, or Bio field. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
EPSS
Процентиль: 33%
0.00133
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79