CVE-2014-5248

Cross-site scripting (XSS) vulnerability in MyBB before 1.6.15 allows remote attackers to inject arbitrary web script or HTML via vectors related to video MyCode.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mybb:mybb:*:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.0:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.2:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.3:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.4:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.5:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.6:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.7:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.8:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.9:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.10:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.11:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.12:*:*:*:*:*:*:*
cpe:2.3:a:mybb:mybb:1.6.13:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-08-14 18:47

Updated : 2024-02-04 18:35


NVD link : CVE-2014-5248

Mitre link : CVE-2014-5248

CVE.ORG link : CVE-2014-5248


JSON object : View

Products Affected

mybb

  • mybb
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')