Vulnerabilities > Mybb > Mybb > 1.8.21
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-10 | CVE-2020-15139 | Cross-site Scripting vulnerability in Mybb In MyBB before version 1.8.24, the custom MyCode (BBCode) for the visual editor doesn't escape input properly when rendering HTML, resulting in a DOM-based XSS vulnerability. | 4.3 |
| 2020-01-02 | CVE-2019-20225 | Open Redirect vulnerability in Mybb MyBB before 1.8.22 allows an open redirect on login. | 5.8 |