CVE-2006-1625

Name of the Vulnerable Software and Affected Versions: MyBB versions 1.10

Description: A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode email tag. This can be achieved by using events such as onmousemove.

Recommendations: For MyBB version 1.10, update to a version that fixes this issue to prevent exploitation.