Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mybb vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2018-1000502
MyBB Group MyBB contains a File Inclusion vulnerability in Admin panel (Tools and Maintenance -> Task Manager -> Add New Task) that can result in Allows Local File Inclusion on modern PHP versions and Remote File Inclusion on ancient PHP versions. This attack appear to be e...
Mybb Mybb
NA
CVE-2015-2786
Unspecified vulnerability in MyBB (aka MyBulletinBoard) prior to 1.8.4 has unknown attack vectors related to "Group join request notifications sent to wrong group leaders."
Mybb Mybb
NA
CVE-2008-3071
Directory traversal vulnerability in inc/class_language.php in MyBB prior to 1.2.13 has unknown impact and attack vectors related to the $language variable.
Mybb Mybb
5.4
CVSSv3
CVE-2018-17128
A Persistent XSS issue exists in the Visual Editor in MyBB prior to 1.8.19 via a Video MyCode.
Mybb Mybb
1 EDB exploit
6.1
CVSSv3
CVE-2020-15139
In MyBB before version 1.8.24, the custom MyCode (BBCode) for the visual editor doesn't escape input properly when rendering HTML, resulting in a DOM-based XSS vulnerability. The weakness can be exploited by pointing a victim to a page where the visual editor is active (e.g....
Mybb Mybb
5.3
CVSSv3
CVE-2017-8104
In MyBB prior to 1.8.11, the smilie module allows Directory Traversal via the pathfolder parameter.
Mybb Mybb
9.8
CVSSv3
CVE-2017-16780
The installer in MyBB prior to 1.8.13 allows remote malicious users to execute arbitrary code by writing to the configuration file.
Mybb Mybb
1 EDB exploit
5.4
CVSSv3
CVE-2017-16781
The installer in MyBB prior to 1.8.13 has XSS.
Mybb Mybb
1 EDB exploit
8.8
CVSSv3
CVE-2021-27890
SQL Injection vulnerablity in MyBB prior to 1.8.26 via theme properties included in theme XML files.
Mybb Mybb
1 Github repository
8.8
CVSSv3
CVE-2021-27946
SQL Injection vulnerability in MyBB prior to 1.8.26 via poll vote count. (issue 1 of 3).
Mybb Mybb
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »