|Category:||Web application abuses|
|Title:||MyBB <= 1.8.19 Multiple Vulnerabilities|
|Summary:||MyBB is prone to multiple vulnerabilities.|
MyBB is prone to multiple vulnerabilities.
Following vulnerabilities exist:
- XSS in the resetpassword function
- Remote attackers may obtain sensitive information because MyBB discloses
the username upon receiving a password-reset request that lacks the code parameter.
Successful exploitation would allow an attacker to obtain sensitive information
MyBB through version 1.8.19.
Update to version 1.8.20.
Common Vulnerability Exposure (CVE) ID: CVE-2019-3578|
Common Vulnerability Exposure (CVE) ID: CVE-2019-3579
|Copyright||Copyright (C) 2019 Greenbone Networks GmbH|
|This is only one of 74190 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.