2 matches found
CVE-2019-3579
MyBB 1.8.19 allows remote attackers to obtain sensitive information because it discloses the username upon receiving a password-reset request that lacks the code parameter...
CVE-2019-3579
Summary : CVE-2019-3579 affects MyBB 1.8.19, where a password-reset request that omits the code parameter discloses the username, enabling information disclosure. This is a server-side information leak in the password-reset flow that does not require authentication. The vulnerability is documente...