Reflected XSS Vulnerability in MyBB ModCP Profile Editor (CVE-2020-12345)

Reflected XSS Vulnerability in MyBB ModCP Profile Editor (CVE-2020-12345)

CVE-2018-19201 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

A reflected XSS vulnerability in the ModCP Profile Editor in MyBB before 1.8.20 allows remote attackers to inject JavaScript via the 'username' parameter.

Learn more about our User Device Pen Test.