EUVD-2016-10214

Malware in sbrugna...

EUVD-2023-50480

Malicious code in bioql PyPI...

CVE-2025-48941

MyBB is free and open source forum software. Prior to version 1.8.39, the search component does not validate permissions correctly, which allows attackers to determine the existence of hidden draft, unapproved, or soft-deleted threads containing specified text in the title. The visibility state...

MyBB Server Request Forgery Vulnerability

MyBB MyBulletinBoard is a free and web-based forum software developed by MYBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A server request forgery vulnerability exists in MyBB versions prior to 1.8.38, which stems from the...

PT-2024-19816 · Apache · Apache

Name of the Vulnerable Software and Affected Versions: MyBB versions prior to 1.8.38 Description: The backup management module of the Admin CP in MyBB may accept .htaccess as the name of the backup file to be deleted, potentially exposing stored backup files over HTTP on Apache servers...

MyBB Cross-Site Scripting Vulnerability (CNVD-2021-36552)

MyBB is a full-featured and very useful forum software. A cross-site scripting vulnerability exists in MyBB versions prior to 1.6.13. A remote attacker can inject arbitrary web script or HTML via the name parameter of the edit operation in the config-profilefields module...

MyBB Cross-Site Scripting Vulnerability (CNVD-2021-22153)

MyBB is a free open source forum software. A cross-site scripting vulnerability exists in the parsing of messages in Nested Auto URLs in versions of MyBB prior to 1.8.26. No details of the vulnerability are provided at this time...

MyBB SQL Injection Vulnerability (CNVD-2021-25710)

MyBB is a free open source forum software. A SQL injection vulnerability exists in vote counting in versions of MyBB prior to 1.8.26, no details of the vulnerability are available at this time...

[KAPDA]MyBB 1.1.7~ htmlspeacialchar_uni(), fixjavascript(), functions_post.php ~[url]XSS attack

ORIGINAL ADVISORY: http://myimei.com/security/2006-08-15/mybb-117-htmlspeacialcharuni-fixjavascript-functionspostphp-urlxss-attack.html http://kapda.ir/page-advisory.html ——————-Summary—————- Software: MyBB Sowtware’s Web Site: http://www.mybboard.com Versions: 1.1.7 Class: Remote Status: Unpatch...

[KAPDA]MyBB1.1.3~Option update for code buttons~Sql Injection Admin Access

ORIGINAL ADVISORY: http://myimei.com/security/2006-06-21/mybb113option-update-for-code-buttonssql-injection-admin-access.html http://www.kapda.ir/page-advisory.html ——————-Summary—————- Software: MyBB Sowtware’s Web Site: http://www.mybboard.com Versions: 1.1.3 Class: Remote Status: Patched...

[KAPDA::#38] - MyBB 1.1.0~functions_post.php~XSS Attack

ORIGINAL ADVISORY: http://myimei.com/security/2006-03-12/mybb-110functionspostphpxss-attack.html http://kapda.ir/advisory-305.html ---------- ——————-Summary—————- Software: MyBB Sowtware’s Web Site: http://www.mybboard.com Versions: 1.1.0 Class: Remote Status: Unpatched Exploit: Private Solution:...