# Exploit Title: RCE in MyBB up to 1813 via installer
# Date: Found on 05-29-2017
# Exploit Author: Pablo Sacristan
# Vendor Homepage: mybbcom/
# Version: Version > 1813 (Fixed in 1813)
# CVE : CVE-2017-16780
This RCE can be executed via CSRF but doesn't require it (in some special cases) The requirements are there shouldn't be ...