Описание
The Hide-Thread-Content plugin through 2021-01-27 for MyBB allows remote attackers to bypass intended content-reading restrictions by clicking on reply or quote in the postbit.
Ссылки
- http://packetstormsecurity.com/files/161185/MyBB-Hide-Thread-Content-1.0-Information-Disclosure.htmlExploitThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- http://packetstormsecurity.com/files/161185/MyBB-Hide-Thread-Content-1.0-Information-Disclosure.htmlExploitThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:hide_thread_content_project:hide_thread_content:1.0:*:*:*:*:mybb:*:*
EPSS
Процентиль: 94%
0.15532
Средний
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-863
Связанные уязвимости
github
больше 3 лет назад
The Hide-Thread-Content plugin through 2021-01-27 for MyBB allows remote attackers to bypass intended content-reading restrictions by clicking on reply or quote in the postbit.
EPSS
Процентиль: 94%
0.15532
Средний
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-863