FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mybb -- multiple vulnerabilities

Affected packages
mybb < 1.8.15

Details

VuXML ID d50a50a2-2f3e-11e8-86f8-00e04c1ea73d
Discovery 2018-03-15
Entry 2018-03-24

mybb Team reports:

Medium risk: Tasks Local File Inclusion

Medium risk: Forum Password Check Bypass

Low risk: Admin Permissions Group Title XSS

Low risk: Attachment types file extension XSS

Low risk: Moderator Tools XSS

Low risk: Security Questions XSS

Low risk: Settings Management XSS

Low risk: Templates Set Name XSS

Low risk: Usergroup Promotions XSS

Low risk: Warning Types XSS

[source]

References

URL https://blog.mybb.com/2018/03/15/mybb-1-8-15-released-security-maintenance-release/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.