Vulnerabilities > CVE-2007-0689 - Unspecified vulnerability in Mybb

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
mybb
NVD
Published: 2007-05-14
Updated: 2024-11-21

Summary

MyBB 1.2.4 allows remote attackers to obtain sensitive information via the (1) action[] parameter to member.php, (2) imagehash[] parameter to captcha.php, and (3) a direct request to inc/datahandlers/event.php, which reveal the installation path in the resulting error message.

Vulnerable Configurations

Part Description Count
Application
Mybb
27

References