Vulnerability Details CVE-2022-28353
In the External Redirect Warning Plugin 1.3 for MyBB, the redirect URL (aka external.php?url=) is vulnerable to XSS.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.9%
CVSS Severity
CVSS v3 Score 6.1
References
- http://packetstormsecurity.com/files/171403/MyBB-External-Redirect-Warning-1.3-Cross-Site-Scripting.html
- https://community.mybb.com/mods.php?action=view&pid=493
- http://packetstormsecurity.com/files/171403/MyBB-External-Redirect-Warning-1.3-Cross-Site-Scripting.html
- https://community.mybb.com/mods.php?action=view&pid=493
Products affected by CVE-2022-28353
-
cpe:2.3:a:external_redirect_warning_project:external_redirect_warning:1.3