CVE-2020-19049

EPSS 0.14% · P33 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-19049

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cross Site Scripting (XSS) in MyBB v1.8.20 allows remote attackers to inject arbitrary web script or HTML via the "Description" field found in the "Add New Forum" page by doing an authenticated POST HTTP request to '/Upload/admin/index.php?module=forum-management&action=add'.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

MyBB 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

MyBB（MyBulletinBoard）是MyBB（MYBB）团队的开发的一套用PHP和MySQL开发的免费且基于Web的论坛软件。该软件具有简单易用、支持多国语言、可扩展等特点。 MyBB 存在安全漏洞，该漏洞源于在MyBB的v1.8.20版本中存在跨站脚本(XSS)漏洞。攻击者可利用该漏洞通过“添加新论坛”页面的“描述”字段注入任意web脚本或HTML。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-19049

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-19049

请登录查看更多情报信息。

https://nvd.nist.gov/vuln/detail/CVE-2020-19049

Same Patch Batch · n/a · 2021-08-31 · 33 CVEs total

CVE-2021-22944		Ubiquiti Networks UniFi Protect 访问控制错误漏洞
CVE-2021-40330		Git 处理逻辑错误漏洞
CVE-2021-36981		SerNet verinice 代码问题漏洞
CVE-2021-3634		Libssh 缓冲区错误漏洞
CVE-2021-27556		Nature Easy Soft Network Technology ZenTao 操作系统命令注入漏洞
CVE-2021-27557		Nature Easy Soft Network Technology ZenTao 跨站请求伪造漏洞
CVE-2021-27558		Nature Easy Soft Network Technology ZenTao 跨站脚本漏洞
CVE-2021-36356		Kramer Electronics VIAware 代码问题漏洞
CVE-2020-13639		Outsystems OutSystems Platform 跨站脚本漏洞
CVE-2021-38145		Form Tools SQL注入漏洞
CVE-2021-38143		Form Tools 跨站脚本漏洞
CVE-2021-38144		Form Tools 跨站脚本漏洞
CVE-2020-19046		S-CMS 跨站脚本漏洞
CVE-2020-19047		iWebShop 跨站请求伪造漏洞
CVE-2020-19048		MyBB 跨站脚本漏洞
CVE-2021-22684		Samsung Galaxy Gear Series Tizen 输入验证错误漏洞
CVE-2020-20495		bludit 安全漏洞
CVE-2021-22943		Ubiquiti Networks UniFi Protect 授权问题漏洞
CVE-2021-22929		Brave 日志信息泄露漏洞
CVE-2021-21811		AT&T Labs Xmill 数字错误漏洞

Showing top 20 of 33 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-19049

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-19049

I. Basic Information for CVE-2020-19049

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-19049

III. Intelligence Information for CVE-2020-19049

Same Patch Batch · n/a · 2021-08-31 · 33 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-19049

Leave a comment