Description

Unspecified vulnerability in MyBB (aka MyBulletinBoard) before 1.8.4 has unknown attack vectors related to "Group join request notifications sent to wrong group leaders."

Remediation

References

CVE-2015-2786

Related Vulnerabilities

Serendipity Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-5475)

IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9735)

WordPress Plugin Auto Post to Social Media-WordPress to Buffer Cross-Site Scripting (3.7.4)

Oracle Database Server CVE-2006-0265 Vulnerability (CVE-2006-0265)

XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-29208)

Severity

Critical

Classification

CVE-2015-2786

Tags

Missing Update Known Vulnerabilities