Description

Cross-site request forgery (CSRF) vulnerability in the Admin Control Panel (ACP) login in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Remediation

References

CVE-2015-2334

Related Vulnerabilities

Perl Numeric Errors Vulnerability (CVE-2011-2939)

LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-16397)

Jenkins CVE-2013-0329 Vulnerability (CVE-2013-0329)

Atlassian Confluence Incorrect Behavior Order: Validate Before Canonicalize Vulnerability (CVE-2022-26136)

WordPress 'press-this.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.5.1)

Severity

Medium

Classification

CVE-2015-2334 CWE-352

Tags

Missing Update Known Vulnerabilities