Mybb · Mybb · CVE-2015-4552
**Name of the Vulnerable Software and Affected Versions**
MyBB versions prior to 1.8.5
**Description**
A cross-site scripting (XSS) issue exists in the quick edit function of xmlhttp.php, allowing remote attackers to inject arbitrary web script or HTML via the content of a post.
**Recommendations**
For versions prior to 1.8.5, update to version 1.8.5 or later to resolve the issue.