Vulnerabilities > CVE-2006-0494 - Directory Traversal vulnerability in Mybulletinboard 1.0.2

047910
CVSS 4.3 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
mybulletinboard

Summary

Directory traversal vulnerability in MyBB (aka MyBulletinBoard) 1.02 allows local users with MyBB administrative privileges to include and possibly execute arbitrary local files via directory traversal sequences and a nul (%00) character in the plugin parameter.

Vulnerable Configurations

Part Description Count
Application
Mybulletinboard
1