Remote Code Execution in MyBulletinBoard (MyBB) 1.0 PR2 Rev 686 via Modified Inbox Form Fields

Remote Code Execution in MyBulletinBoard (MyBB) 1.0 PR2 Rev 686 via Modified Inbox Form Fields

CVE-2005-3777 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

MyBulletinBoard (MyBB) 1.0 PR2 Rev 686 allows remote attackers to delete or move private messages (PM) via modified fields in the inbox form.

Learn more about our Web Application Penetration Testing UK.