Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mybboard vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6198
SQL injection vulnerability in pages.php in Custom Pages 1.0 plugin for MyBulletinBoard (MyBB) allows remote malicious users to execute arbitrary SQL commands via the page parameter.
Mybboard Custom Pages Plugin 1.0
1 EDB exploit
NA
CVE-2009-4813
Cross-site scripting (XSS) vulnerability in myps.php in MyBB (aka MyBulletinBoard) 1.4.10 allows remote malicious users to inject arbitrary web script or HTML via the username parameter in a donate action.
Mybboard Mybb 1.4.10
1 EDB exploit
NA
CVE-2008-7082
MyBB (aka MyBulletinBoard) 1.4.3 includes the sensitive my_post_key parameter in URLs to moderation.php with the (1) mergeposts, (2) split, and (3) deleteposts actions, which allows remote malicious users to steal the token and bypass the cross-site request forgery (CSRF) protect...
Mybboard Mybb 1.4.3
NA
CVE-2009-4448
inc/functions_time.php in MyBB (aka MyBulletinBoard) 1.4.10, and possibly earlier versions, allows remote malicious users to cause a denial of service (CPU consumption) via a crafted request with a large year value, which triggers a long loop, as reachable through member.php and ...
Mybboard Mybb 1.4.10
6.5
CVSSv3
CVE-2009-4449
Directory traversal vulnerability in MyBB (aka MyBulletinBoard) 1.4.10, and possibly earlier versions, when changing the user avatar from the gallery, allows remote authenticated users to determine the existence of files via directory traversal sequences in the avatar and possibl...
Mybboard Mybb 1.4.10
NA
CVE-2010-5096
Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) prior to 1.6.1 allow remote malicious users to execute arbitrary SQL commands via the keywords parameter in a (1) do_search action to search.php or (2) do_stuff action to private.php. NOTE: the vendor disputes t...
Mybb Mybb 1.2.10
Mybb Mybb 1.4.11
Mybb Mybb 1.2.8
Mybb Mybb 1.4.3
Mybb Mybb 1.4.12
Mybb Mybb 1.0
Mybb Mybb 1.04
Mybb Mybb 1.1.1
Mybb Mybb 1.4.5
Mybb Mybb 1.1.3
Mybb Mybb 1.2.2
Mybb Mybb 1.4.14
Mybb Mybb 1.2.9
Mybb Mybb 1.4.8
Mybb Mybb 1.4.15
Mybb Mybb 1.2.1
Mybb Mybb 1.01
Mybb Mybb 1.1.6
Mybb Mybb 1.2.6
Mybb Mybb 1.4.0
Mybb Mybb 1.2.0
Mybb Mybb 1.4.1
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started