Description
Multiple serious vulnerabilities have been found in MyBB. Malicious users can exploit these vulnerabilities to obtain sensitive information or conduct cross site scrtipting.
Below is a complete list of vulnerabilities
- An unknown vulnerability can be exploited remotely via vectors related to JSON;
- CSRF vulnerability can be exploited remotely via unknown vectors;
- XSS vulnerability can be exploited remotely via vectors related to administrative backend;
Original advisories
Related products
CVE list
- CVE-2015-2334 high
- CVE-2015-2335 critical
- CVE-2015-2332 warning
- CVE-2015-2333 warning
- CVE-2015-2149 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!