Mybb · Mybb · CVE-2014-5248
**Name of the Vulnerable Software and Affected Versions**
MyBB versions prior to 1.6.15
**Description**
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via vectors related to video MyCode.
**Recommendations**
For versions prior to 1.6.15, update to version 1.6.15 or later to resolve the issue.