Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mybboard vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2008-7082
MyBB (aka MyBulletinBoard) 1.4.3 includes the sensitive my_post_key parameter in URLs to moderation.php with the (1) mergeposts, (2) split, and (3) deleteposts actions, which allows remote malicious users to steal the token and bypass the cross-site request forgery (CSRF) protect...
Mybboard Mybb 1.4.3
445
VMScore
CVE-2009-4448
inc/functions_time.php in MyBB (aka MyBulletinBoard) 1.4.10, and possibly earlier versions, allows remote malicious users to cause a denial of service (CPU consumption) via a crafted request with a large year value, which triggers a long loop, as reachable through member.php and ...
Mybboard Mybb 1.4.10
561
VMScore
CVE-2009-4449
Directory traversal vulnerability in MyBB (aka MyBulletinBoard) 1.4.10, and possibly earlier versions, when changing the user avatar from the gallery, allows remote authenticated users to determine the existence of files via directory traversal sequences in the avatar and possibl...
Mybboard Mybb 1.4.10
755
VMScore
CVE-2008-6198
SQL injection vulnerability in pages.php in Custom Pages 1.0 plugin for MyBulletinBoard (MyBB) allows remote malicious users to execute arbitrary SQL commands via the page parameter.
Mybboard Custom Pages Plugin 1.0
1 EDB exploit
435
VMScore
CVE-2009-4813
Cross-site scripting (XSS) vulnerability in myps.php in MyBB (aka MyBulletinBoard) 1.4.10 allows remote malicious users to inject arbitrary web script or HTML via the username parameter in a donate action.
Mybboard Mybb 1.4.10
1 EDB exploit
760
VMScore
CVE-2010-5096
Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) prior to 1.6.1 allow remote malicious users to execute arbitrary SQL commands via the keywords parameter in a (1) do_search action to search.php or (2) do_stuff action to private.php. NOTE: the vendor disputes t...
Mybb Mybb 1.2.10
Mybb Mybb 1.4.11
Mybb Mybb 1.2.8
Mybb Mybb 1.4.3
Mybb Mybb 1.4.12
Mybb Mybb 1.0
Mybb Mybb 1.04
Mybb Mybb 1.1.1
Mybb Mybb 1.4.5
Mybb Mybb 1.1.3
Mybb Mybb 1.2.2
Mybb Mybb 1.4.14
Mybb Mybb 1.2.9
Mybb Mybb 1.4.8
Mybb Mybb 1.4.15
Mybb Mybb 1.2.1
Mybb Mybb 1.01
Mybb Mybb 1.1.6
Mybb Mybb 1.2.6
Mybb Mybb 1.4.0
Mybb Mybb 1.2.0
Mybb Mybb 1.4.1
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started