Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
Home  Ask the Team  Mailing Lists  Advertising Info  Advisories  About SecuriTeam  Blogs Brought to you by: Suppliers of: Website Testing Tools Network Testing Tools Software Testing Tools SecuriTeam in Your Inbox New vulnerability? New tool? Tell us (Our PGP key). Network Enabled Discount: SecuriTeam5_SANS Promo With Us Subjects of Interest: Vulnerability Management SQL Injection Buffer Overflows Active Network Scanning Fuzzing Fuzzer Report Network Security Network Scanner Pen Testing Security Scanner Scanner Review Fuzzer Review Web Scanner Review	Mybb 1.6.17 HTML Cross Site Scripting Vulnerability 10 Jul. 2017    Summary Mybb is prone to a cross-site scripting vulnerability.This allows remote attackers to inject arbitrary web script or HTML via vulnerable vectors.A remote attacker can use cross-site scripting(XSS) to send a hostile script to an unsuspicious user.   Credit: The information has been provided by Devilshakerz . The original article can be found at: http://www.securityfocus.com/bid/94397 Free Website Security Scan Free Fuzzer Report Vulnerability Assessment Detect web app vulnerabilities University study comparing the top Accurate and automated scanning Get guidance from professionals. 6 commercially availble fuzzers. for networks of any size.    Details Protect your website! Free Trial, Nothing to install. No interruption of visitors. www.beyondsecurity.com/vulnerability-scanner Vulnerable Systems:  * Mybb Merge System 1.8.5  * Mybb 1.6.17  * Mybb 1.8.0  * Mybb 1.8.1  * Mybb 1.8.2  * Mybb 1.8.3  * Mybb 1.8.4  * Mybb 1.8.5 Cross-site scripting (XSS) vulnerability in MyBB (aka MyBulletinBoard) before 1.6.18 and 1.8.x before 1.8.6 and MyBB Merge System before 1.8.6 might allow remote attackers to inject arbitrary web script or HTML via vectors related to "old upgrade files." CVE Information: CVE-2015-8976 Disclosure Timeline: Publish Date : 2017-01-31 Last Update Date : 2017-02-03  Comments: blog comments powered by Disqus	Related Articles Oracle Glassfish Server 2.1.1 Denial Of Service Vulnerability Oracle Flexcube Private Banking 12.0.1 Core Remote Code Execution Vulnerability Oracle Common Applications 12.1.2 allows Remote Code Execution Vulnerability Oracle Advanced Outbound Telephony 12.1.1 unauthorized Remote Code Execution Vulnerability NTP 4.2.8 record Execute Code Vulnerability Netgear Dgn2200 Series Firmware 10.0.0.50 Execute Code Vulnerability Mybb 1.8.4 inject Cross Site Scripting Vulnerability Metalgenix Genixcms 0.0.8 Execute Code Sql Injection Vulnerability Linux Kernel 3.1 IPA Execute Code Vulnerability Libtiff 4.0.7 Execute Code Overflow Vulnerability Libimobiledevice Libplist offset Denial Of Service Vulnerability Libical icaltime_from_string Denial Of Service Vulnerability Jasper 1.900.17 behavior Denial Of Service Vulnerability Irssi 0.8.17 Denial Of Service Vulnerability Imagemagick 6.9.7 arbitrary Overflow Vulnerability Gstreamer 1.10.1 Denial Of Service Execute Code Overflow Vulnerability Foxitsoftware Foxit Reader 8.1.4.1208 Denial Of Service Execute Code Vulnerability EMC Documentum Administrator 7 Cross Site Scripting Vulnerability Dotclear 2.11.2 Cross Site Scripting Vulnerability Cisco Unified Communications Manager 11.5(1.12000.1) Cross Site Scripting Bypass a restriction or similar Vulnerability  Featured Articles Cisco Unified Communications Manager 11.5(1.12000.1) Cross Site Scripting Bypass a restriction or similar Vulnerability Adobe Acrobat Dc 15.006.30244 Execute Code Overflow Memory corruption Vulnerability Oracle Marketing 12.2.6 Base Score Remote Code Execution Vulnerability Google Android 7 context Execute Code Overflow Memory corruption Vulnerability Cisco Webex Meeting Center Wbs28 Base Remote Code Execution Vulnerability Adobe Acrobat heap Execute Code Overflow Vulnerability Oracle Istore 12.1.1 critical data Remote Code Execution Vulnerability Google Android 7 Mediaserver Execute Code Overflow Memory corruption Vulnerability Cisco Netflow Generation Appliance Software 1.0(2) unresponsive Denial Of Service Vulnerability Trend Micro Smart Protection Server 2.5 attackers Directory traversal Vulnerability Cisco Email Security Appliance 9.7.1-hp2-207 Bypass a restriction or similar Vulnerability Microsoft Windows Server 2008 R2 Obtain Information Vulnerability Adobe Reader Acrobat Dc 15.017.20053 Continuous Windows Denial Of Service Execute Code Overflow Memory corruption Vulnerability IBM Security Guardium Database Activity Monitor 10.01 Remote Code Execution Vulnerability Lenovo Thinkpad 10 Ella 2 Bios Denial Of Service Vulnerability Adobe Acrobat Dc 15.017.20053 Continuous Execute Code Vulnerability Microsoft Windows 10 1607 Denial Of Service Execute Code Vulnerability IBM Sterling Secure Proxy HTTP Cross Site Scripting Obtain Information Vulnerability Cisco Nx-os 4.1.(3) Execute Code Overflow Vulnerability Adobe Acrobat Dc 15.006.30201 Continuous Classic OS Execute Code Vulnerability
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus - Blogs - CVEs

Copyright © Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®