Multiple cross-site scripting (XSS) vulnerabilities in MyBulletinBoard (MyBB) 1.0 PR2 Rev 686 allow remote malicious users to inject arbitrary web script or HTML via (1) the subject field when creating a new thread and (2) information passed to the Reputation system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mybulletinboard mybulletinboard preview_release_2_rev_686 |