Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
0xb9 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-244881
WordPress Post Grid plugin version 2.1.1 suffers from a cross site scripting vulnerability.
NA
CVE-2019-76881
LayerBB version 1.1.2 suffers from a cross site scripting vulnerability.
NA
CVE-2019-165311
LayerBB version 1.1.3 suffers from a cross site request forgery vulnerability.
NA
CVE-2019-69791
MyBB IP History Logs plugin version 1.0.2 suffers from a cross site scripting vulnerability.
355
VMScore
CVE-2019-3501
The OUGC Awards plugin prior to 1.8.19 for MyBB allows XSS via a crafted award reason that is mishandled on the awards page or in a user profile.
Ougc Awards Project Ougc Awards
1 EDB exploit
435
VMScore
CVE-2019-9650
An XSS issue exists in upcoming_events.php in the Upcoming Events plugin prior to 1.33 for MyBB via a crafted name for an event.
Upcoming Events Project Upcoming Events
1 EDB exploit
435
VMScore
CVE-2019-6979
An issue exists in the User IP History Logs (aka IP_History_Logs) plugin 1.0.2 for MyBB. There is XSS via the admin/modules/tools/ip_history_logs.php useragent field.
Ip History Logs Project Ip History Logs 1.0.2
1 EDB exploit
NA
CVE-2018-145751
MyBB Trash Bin plugin version 1.1.3 suffers from cross site request forgery and cross site scripting vulnerabilities.
NA
CVE-2023-27890
The Export User plugin up to and including 2.0 for MyBB allows XSS during the process of an admin generating DSGVO data for a user, via the Custom User Title, Location, or Bio field. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Export User Project Export User
NA
CVE-2022-28353
In the External Redirect Warning Plugin 1.3 for MyBB, the redirect URL (aka external.php?url=) is vulnerable to XSS.
External Redirect Warning Project External Redirect Warning 1.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »