MyBB 1.8.31 has a Cross-site scripting (XSS) vulnerability in the visual MyCode editor (SCEditor) allows remote malicious users to inject HTML via user input or stored data
mybb mybb