Affected Systems:
MyBB 1.2.x
Unaffected Systems:
MyBB 1.2.14
Description:
BUGTRAQ ID: 30401
CVE ID: CVE-2008-3334
MyBB is a popular web-based forum application. The search.php file in MyBB does not properly validate certain parameters before returning them to the user, allowing remote attackers to perform script injection or cross-site scripting (XSS) attacks by submitting malicious requests to the forum.