CVE-2022-43708

Description

MyBB 1.8.31 has a (issue 2 of 2) cross-site scripting (XSS) vulnerabilities in the post Attachments interface allow attackers to inject HTML by persuading the user to upload a file with specially crafted name

Related CPE's

a mybb mybb ********

References

https://mybb.com

Product

https://github.com/mybb/mybb/security/advisories/GHSA-p9m7-9qv4-x93w

PatchThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io