exploits , vulnerabilities , articles , MyBB Prior to 1.4.2 Multiple Security Vulnerabilities

Title	MyBB Prior to 1.4.2 Multiple Security Vulnerabilities
Published	2008-09-22-12:00AM
Updated	2008-09-23-02:49PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	Discovery of these issues is credited to Gulftech, Kellanved, and NeoThermic.
Vulnerable	MyBulletinBoard MyBulletinBoard 1.4.1 MyBulletinBoard MyBulletinBoard 1.4 MyBulletinBoard MyBulletinBoard 1.2.13 MyBulletinBoard MyBulletinBoard 1.2.12 MyBulletinBoard MyBulletinBoard 1.2.11 MyBulletinBoard MyBulletinBoard 1.2.10 MyBulletinBoard MyBulletinBoard 1.2.5 MyBulletinBoard MyBulletinBoard 1.2.3 MyBulletinBoard MyBulletinBoard 1.1.8 MyBulletinBoard MyBulletinBoard 1.1.7 MyBulletinBoard MyBulletinBoard 1.1.7 MyBulletinBoard MyBulletinBoard 1.1.6 MyBulletinBoard MyBulletinBoard 1.1.5 MyBulletinBoard MyBulletinBoard 1.1.4 MyBulletinBoard MyBulletinBoard 1.1.3 MyBulletinBoard MyBulletinBoard 1.1.2 MyBulletinBoard MyBulletinBoard 1.1.2 MyBulletinBoard MyBulletinBoard 1.1.1 MyBulletinBoard MyBulletinBoard 1.1 MyBulletinBoard MyBulletinBoard 1.0.4 MyBulletinBoard MyBulletinBoard 1.0.3 MyBulletinBoard MyBulletinBoard 1.0.2 MyBulletinBoard MyBulletinBoard 1.0.1 MyBulletinBoard MyBulletinBoard 1.0 PR2 MyBulletinBoard MyBulletinBoard 1.0 MyBulletinBoard MyBulletinBoard RC4 MyBulletinBoard MyBulletinBoard RC3 MyBulletinBoard MyBulletinBoard RC2 MyBulletinBoard MyBulletinBoard RC1 MyBulletinBoard MyBulletinBoard 1.2 MyBulletinBoard MyBulletinBoard 1.10
Not Vulnerable	MyBulletinBoard MyBulletinBoard 1.4.2
Code	Attackers can exploit the cross-site scripting issue by enticing an unsuspecting to victim to follow a malicious URI. Attackers may likely exploit the other issues via a browser.
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-19 Serv-U File Server User Directory Information Disclosure Vulnerability
• 2009-12-18 ReVou Comment Field HTML Injection Vulnerability
• 2009-12-18 Adobe Flash Media Server Resource Exhaustion Remote Denial of Service Vulnerability
• 2009-12-18 Centreon Authentication Mechanism Security Bypass Vulnerability
• 2009-12-18 Family Connections Multiple Input Validation Vulnerabilities
• 2009-12-18 Drupal Contact and Menu Modules Multiple HTML Injection Vulnerabilities
• 2009-12-18 Mozilla Firefox and SeaMonkey NTLM Credential Reflection Authentication Bypass Vulnerability
• 2009-12-18 Mozilla Firefox CVE-2009-3982 JavaScript Engine Multiple Remote Memory Corruption Vulnerabilities
• 2009-12-17 Zen Cart Insecure File and Programs Information Disclosure and Database Deletion Vulnerability
• 2009-12-17 Winamp Module Decoder Plugin Multiple Buffer Overflow Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Sat, 19 Dec 2009 06:59:47 +0000