Description

MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allow remote attackers to obtain sensitive information by leveraging missing directory listing protection in upload directories.

Remediation

References

CVE-2016-9414

Related Vulnerabilities

SharePoint CVE-2022-37961 Vulnerability (CVE-2022-37961)

WordPress Plugin Gallery-Flagallery Photo Portfolio Cross-Site Request Forgery (3.01)

Joomla! Core 1.6.x Security Bypass (1.6.0 - 1.6.3)

WordPress Plugin wSecure Lite Remote Code Execution (2.3)

jQuery UI Dialog Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41182)

Severity

High

Classification

CVE-2016-9414 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities