CVE-2010-4626
CVE-2010-4626 affects MyBB up to version 1.4.11 where the my_rand function in functions.php does not properly use PHP’s mt_rand, enabling remote attackers to subvert password reset flows and perform brute-force account access. The root cause is inadequate randomness in the reset mechanism. The pu...