Information Disclosure Vulnerability in MyBB (aka MyBulletinBoard) before 1.4.12

Information Disclosure Vulnerability in MyBB (aka MyBulletinBoard) before 1.4.12

CVE-2010-4625 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

MyBB (aka MyBulletinBoard) before 1.4.12 does not properly handle a configuration with a visible forum that contains hidden threads, which allows remote attackers to obtain sensitive information by reading the Latest Threads block of the Portal Page.

Learn more about our Web Application Penetration Testing UK.