RIPS Technologies Blog: MyBB <= 1.8.20: From Stored XSS to RCE

Impact Your browser does not support the video tag.
We discovered a Stored XSS vulnerability that occured due to a parsing error in posts and private messages in MyBB 1.8.20 and prior versions, as well as an authenticated Remote Code Execution vulnerability that can be exploited by administrators…

from PHPDeveloper.org http://bit.ly/2F48npK
via IFTTT

Leave a Reply