CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mybb: >> Mybb >> 1.6.7 Security Vulnerabilities

CVE-2013-7288

Cross-site scripting (XSS) vulnerability in the mycode_parse_video function in inc/class_parser.php in MyBB (aka MyBulletinBoard) before 1.6.12 allows remote attackers to inject arbitrary web script or HTML via vectors related to Yahoo video URLs.

CVSS Score

4.3

EPSS Score

0.004

Published

2014-01-10

CVE-2013-7275

Cross-site scripting (XSS) vulnerability in misc.php in MyBB (aka MyBulletinBoard) before 1.6.12 allows remote attackers to inject arbitrary web script or HTML via the editor parameter in a smilie list popup.

CVSS Score

4.3

EPSS Score

0.003

Published

2014-01-08

CVE-2011-4569

SQL injection vulnerability in userbarsettings.php in the Userbar plugin 2.2 for MyBB Forum allows remote attackers to execute arbitrary SQL commands via the image2 parameter.

CVSS Score

7.5

EPSS Score

0.002

Published

2011-11-29

Page 8

Vulnerabilities

Vulnerable Software

Mybb: >> Mybb >> 1.6.7 Security Vulnerabilities

Products

Pricing

Contact Us