Missing Permission Check in MyBB (aka MyBulletinBoard) and MyBB Merge System before 1.8.7 Allows Remote Attackers to Have Unspecified Impact

Missing Permission Check in MyBB (aka MyBulletinBoard) and MyBB Merge System before 1.8.7 Allows Remote Attackers to Have Unspecified Impact

CVE-2016-9403 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

newreply.php in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allows remote attackers to have unspecified impact by leveraging a missing permission check.

Learn more about our Web Application Penetration Testing UK.