Description
MyBB (aka MyBulletinBoard) before 1.4.12 does not properly handle a configuration with a visible forum that contains hidden threads, which allows remote attackers to obtain sensitive information by reading the Latest Threads block of the Portal Page.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Unique Article Header Image Cross-Site Request Forgery (1.0)
WordPress Plugin FooBox Image Lightbox Cross-Site Scripting (1.0.4)
WordPress Plugin Are You a Human-The Fun Spam Blocker Cross-Site Scripting (1.4.32)
Oracle Application Server CVE-2007-5516 Vulnerability (CVE-2007-5516)