Description
MyBB (aka MyBulletinBoard) 1.4.2 uses insufficient randomness to compose filenames of uploaded files used as attachments, which makes it easier for remote attackers to read these files by guessing filenames.
Remediation
References
Related Vulnerabilities
WordPress Plugin Cooked-Recipe Cross-Site Scripting (1.7.9)
MySQL CVE-2021-2056 Vulnerability (CVE-2021-2056)
PleskLin Other Vulnerability (CVE-2013-0133)
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-4390)
Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2023-35133)