Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
3.5
CVSSv2

CVE-2018-11715

Published: 04/06/2018 Updated: 18/07/2018
CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8
CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3
VMScore: 355
Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N
Subscribe to Recent Threads Project

Vulnerability Summary

The Recent Threads plugin prior to 1.1 for MyBB allows XSS via a thread subject.

Vulnerable Product Search on Vulmon Subscribe to Product

recent threads project recent threads

Exploits

Exploit DB: MyBB Recent Threads Plugin 1.0 - Cross-Site Scripting
# Exploit Title: MyBB Recent Threads Plugin v10 - Cross-Site Scripting # Date: 6/2/2018 # Author: 0xB9 # Twitter: @0xB9Sec # Contact: 0xB9[at]pmme # Software Link: communitymybbcom/modsphp?action=view&pid=842 # Version: 10 # Tested on: Ubuntu 1804 # CVE: CVE-2018-11715 1 Description: Creates a page that shows threads that the ...
Exploit DB: MyBB Recent Threads 1.0 Cross Site Scripting
MyBB Recent Threads plugin version 10 suffer from a cross site scripting vulnerability ...

References

CWE-79https://community.mybb.com/mods.php?action=changelog&pid=842https://www.exploit-db.com/exploits/44833/https://nvd.nist.govhttps://www.exploit-db.com/exploits/44833/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook