Avatar URL XSS Vulnerability in MyBB

Summary for Avatar URL XSS Vulnerability in MyBB

Vulnerability: Avatar URL XSS Vulnerability in MyBB
Discovered: 2006.07.22
Last Update: 2006.08.01 Exploitation code published
ID: EV0132
CVE: n/a
Risk Level: medium
Type: Cross Site Scripting
Status: Unpatched. No reply from developer(s)
Vendor: MyBB Group
Vulnerable Software: MyBB
Version: 1.1.6 and earlier
PoC/Exploit: Available
Solution: Available
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)

Order Source Code Analysis

Protect a website by source code audit of your website or web application made by Aliaksandr Hartsuyeu.The work will be done by experts in website security.