Lucene search
K

6 matches found

NVD
NVD
added 2017/01/31 10:59 p.m.13 views

CVE-2015-8973

xmlhttp.php in MyBB aka MyBulletinBoard before 1.6.18 and 1.8.x before 1.8.6 and MyBB Merge System before 1.8.6 allows remote attackers to bypass intended access restrictions via vectors related to the forum password...

8.3CVSS8.1AI score0.01631EPSS
Exploits0References4
Prion
Prion
added 2017/01/31 10:59 p.m.12 views

Default credentials

xmlhttp.php in MyBB aka MyBulletinBoard before 1.6.18 and 1.8.x before 1.8.6 and MyBB Merge System before 1.8.6 allows remote attackers to bypass intended access restrictions via vectors related to the forum password...

7.5CVSS7.2AI score0.01631EPSS
Exploits0References4Affected Software2
CVE
CVE
added 2017/01/31 10:0 p.m.53 views

CVE-2015-8973

CVE-2015-8973 affects MyBB (MyBulletinBoard) up to before 1.6.18 and 1.8.x before 1.8.6, including MyBB Merge System before 1.8.6. The issue allows remote attackers to bypass intended access restrictions via vectors related to the forum password in xmlhttp.php, potentially enabling unauthorized a...

8.3CVSS7.9AI score0.01631EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2017/01/31 10:0 p.m.22 views

CVE-2015-8973

xmlhttp.php in MyBB aka MyBulletinBoard before 1.6.18 and 1.8.x before 1.8.6 and MyBB Merge System before 1.8.6 allows remote attackers to bypass intended access restrictions via vectors related to the forum password...

8.1AI score0.01631EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2009/07/23 12:0 a.m.26 views

Wmshop 6.0 Password Disclosure

Cyber-Warrior & Security TIM - Bug Researchers Group Application Name : Wmshop 6.0 - 5.08 Vulnerable Type : Arbitrary Forum Password Disclosure Vulnerability Infection : Forum Password Get... Author : Septemb0x Script Down.& WebSite : http://s2.dosya.tc/wmshop6.0.rar.html -...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2007/10/23 1:0 a.m.14 views

CVE-2003-1454

Invision Power Services Invision Board 1.0 through 1.1.1, when a forum is password protected, stores the administrator password in a cookie in plaintext, which could allow remote attackers to gain access...

7AI score0.01218EPSS
Exploits0References4
Rows per page
Query Builder