3 matches found
MyBB < 1.8.31 RCE Vulnerability (GHSA-hxhm-rq9f-7xj7)
MyBB is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mybb:mybb";...
CVE-2022-39265 Mail settings' command parameter injection in mybb
MyBB is a free and open source forum software. The Mail Settings → Additional Parameters for PHP's mail function mailparameters setting value, in connection with the configured mail program's options and behavior, may allow access to sensitive information and Remote Code Execution RCE. The...
CVE-2022-39265
CVE-2022-39265 affects MyBB prior to 1.8.31. The vulnerability arises from the Mail Settings → Additional Parameters for PHP’s mail() function, where the mail_parameters setting, in combination with the configured mail program’s options, can expose sensitive information and enable Remote Code Exe...