{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-16T02:43:03.820","vulnerabilities":[{"cve":{"id":"CVE-2014-5248","sourceIdentifier":"cve@mitre.org","published":"2014-08-14T18:47:06.817","lastModified":"2026-05-06T22:30:45.220","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in MyBB before 1.6.15 allows remote attackers to inject arbitrary web script or HTML via vectors related to video MyCode."},{"lang":"es","value":"Vulnerabilidad de XSS en MyBB anterior a 1.6.15 permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a traves de vectores relacionados con video MyCode."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:*:*:*:*:*:*:*:*","versionEndIncluding":"1.6.14","matchCriteriaId":"64B78C22-D24E-4B6E-9DE8-2F4E0DF876A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.0:*:*:*:*:*:*:*","matchCriteriaId":"E5B50C36-C3D7-48FD-805B-4A94E727C93F"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.1:*:*:*:*:*:*:*","matchCriteriaId":"FBEB75D4-FAA4-4A5B-AA0A-57EE8EE88E61"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.2:*:*:*:*:*:*:*","matchCriteriaId":"00E51ABC-9F77-4028-BE47-D5BFD4FEC749"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.3:*:*:*:*:*:*:*","matchCriteriaId":"E0BD20D9-0DFC-451F-9C71-38C6D0236CF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.4:*:*:*:*:*:*:*","matchCriteriaId":"FDFE35CB-05CC-4E6F-B188-1141773E7F10"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.5:*:*:*:*:*:*:*","matchCriteriaId":"22A90F66-DAE9-45FC-B255-390D569CCC56"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.6:*:*:*:*:*:*:*","matchCriteriaId":"E1A3FDDB-9488-405B-A2A0-500CF49061BE"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.7:*:*:*:*:*:*:*","matchCriteriaId":"04264BC5-425C-47D4-9EE0-35BF11B904F9"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.8:*:*:*:*:*:*:*","matchCriteriaId":"5E42628F-7E7F-4E3A-BB8E-699166CB86B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.9:*:*:*:*:*:*:*","matchCriteriaId":"A02FA2FA-E035-40CD-9C0F-A143A931D40D"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.10:*:*:*:*:*:*:*","matchCriteriaId":"F52B8848-9103-4A78-A45B-6BE73855647A"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.11:*:*:*:*:*:*:*","matchCriteriaId":"C7170B92-1D43-49CA-BC79-469F0C8965D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.12:*:*:*:*:*:*:*","matchCriteriaId":"0B8D20CC-DBF2-490F-ACF7-06805BA13FF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:mybb:mybb:1.6.13:*:*:*:*:*:*:*","matchCriteriaId":"C697DCFB-B3ED-407E-8926-5ABA9DB372FF"}]}]}],"references":[{"url":"http://blog.mybb.com/2014/08/04/mybb-1-6-15-released-security-maintenance-release","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://secunia.com/advisories/59707","source":"cve@mitre.org"},{"url":"http://blog.mybb.com/2014/08/04/mybb-1-6-15-released-security-maintenance-release","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://secunia.com/advisories/59707","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}