Description
In MyBB before 1.8.11, the smilie module allows Directory Traversal via the pathfolder parameter.
Remediation
References
Related Vulnerabilities
Oracle Application Server CVE-2006-0291 Vulnerability (CVE-2006-0291)
WordPress 4.7.x Multiple Vulnerabilities (4.7 - 4.7.18)
WordPress Plugin Export any WordPress data to XML/CSV SQL Injection (1.3.4)
WebLogic CVE-2019-2645 Vulnerability (CVE-2019-2645)
Dotclear Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1584)