Arbitrary CSS File Overwrite Vulnerability in MyBB (aka MyBulletinBoard) and MyBB Merge System

Arbitrary CSS File Overwrite Vulnerability in MyBB (aka MyBulletinBoard) and MyBB Merge System

CVE-2016-9415 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

MyBB (aka MyBulletinBoard) before 1.8.8 on Windows and MyBB Merge System before 1.8.8 on Windows allow remote attackers to overwrite arbitrary CSS files via vectors related to "style import."

Learn more about our Web Application Penetration Testing UK.