Description

The cache handler in MyBB (aka MyBulletinBoard) before 1.8.4 does not properly check the encoding of input to the var_export function, which allows attackers to have an unspecified impact via unknown vectors.

Remediation

References

CVE-2015-2352

Related Vulnerabilities

WordPress Plugin WP Like Button Security Bypass (1.6.0)

WordPress Plugin Shield Security-Smart Bot Blocking & Intrusion Prevention Security Cross-Site Scripting (18.5.7)

Apache Tomcat version older than 6.0.14

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Security Bypass (3.0.30)

WordPress Plugin Portfolio Gallery-Photo Gallery Cross-Site Scripting (2.2.2)

Severity

High

Classification

CVE-2015-2352

Tags

Missing Update Known Vulnerabilities