Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) Vulnerabilities in Trash Bin Plugin 1.1.3 for MyBB

Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) Vulnerabilities in Trash Bin Plugin 1.1.3 for MyBB

CVE-2018-14575 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Trash Bin plugin 1.1.3 for MyBB has cross-site scripting (XSS) via a thread subject and a cross-site request forgery (CSRF) via a post subject.

Learn more about our Web Application Penetration Testing UK.