CVE-2023-28467 Information

Description

In MyBB before 1.8.34 there is XSS in the User CP module via the user email field.

Reference

https://github.com/mybb/mybb/security/advisories/GHSA-3q8x-9fh2-v646 https://mybb.com