Description
Unspecified vulnerability in MyBB before 1.6.5 has unknown impact and attack vectors, related to an "unparsed user avatar in the buddy list."
Remediation
References
Related Vulnerabilities
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-2202)
WordPress Plugin Cryptocurrency Widgets For Elementor Security Bypass (1.2.1)
WordPress Plugin Concours Cross-Site Scripting (1.1)
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-5020)
Moodle Uncontrolled Recursion Vulnerability (CVE-2021-36395)