Description
In MyBB before 1.8.11, the smilie module allows Directory Traversal via the pathfolder parameter.
Remediation
References
Related Vulnerabilities
Oracle Application Server CVE-2008-3986 Vulnerability (CVE-2008-3986)
WordPress Plugin W3 Total Cache Backdoor (0.9.2.2)
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2026-26114)
SharePoint CVE-2020-17120 Vulnerability (CVE-2020-17120)
PHP Resource Management Errors Vulnerability (CVE-2015-4024)