Posted by Curesec Research Team (CRT) on Nov 06

Security Advisory – Curesec Research Team

1. Introduction

Affected Product: MiniBB 3.1.1
Fixed in: 3.2
Fixed Version Link: http://www.minibb.com/download.php?file=minibb
Vendor Contact: security () minibb com
Vulnerability Type: XSS
Remote Exploitable: Yes
Reported to vendor: 09/01/2015
Disclosed to public: 10/07/2015
Release mode: Coordinated release
CVE: n/a
Credits Tim Coen of…