Description

MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allow remote attackers to have unspecified impact via vectors related to "loose comparison false positives."

Remediation

References

CVE-2016-9420

Related Vulnerabilities

WordPress Plugin WP-SpamFree Anti-Spam 'id' Parameter SQL Injection (3.2.1)

WordPress Plugin Style It Cross-Site Scripting (1.0)

Apache Traffic Server CVE-2024-35296 Vulnerability (CVE-2024-35296)

ProjectSend Improper Input Validation Vulnerability (CVE-2017-9741)

WordPress Plugin Newsletters Multiple Vulnerabilities (4.6.6.2)

Severity

Critical

Classification

CVE-2016-9420 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities