3 matches found
CVE-2015-2334
Cross-site request forgery CSRF vulnerability in the Admin Control Panel ACP login in MyBB aka MyBulletinBoard before 1.8.4 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
CVE-2015-2334
Cross-site request forgery CSRF vulnerability in the Admin Control Panel ACP login in MyBB aka MyBulletinBoard before 1.8.4 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
CVE-2015-2334
CVE-2015-2334 describes a CSRF vulnerability in the Admin Control Panel (ACP) login of MyBB (pre-1.8.4) that allows remote attackers to hijack user authentication. The root cause is CSRF in the ACP login flow; victims’ sessions could be manipulated via unspecified vectors. The publicly documented...