Description

Unspecified vulnerability in MyBB (aka MyBulletinBoard) before 1.8.4 has unknown attack vectors related to "Group join request notifications sent to wrong group leaders."

Remediation

References

CVE-2015-2786

Related Vulnerabilities

Ruby Cryptographic Issues Vulnerability (CVE-2013-4287)

Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4054)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1830)

Python Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2019-9947)

WordPress Plugin Advanced Custom Fields (ACF) Cross-Site Scripting (5.8.11)

Severity

Critical

Classification

CVE-2015-2786

Tags

Missing Update Known Vulnerabilities