Detections
Analytics

FreeBSD : mybb -- multiple vulnerabilities (d50a50a2-2f3e-11e8-86f8-00e04c1ea73d)

high Nessus Plugin ID 108625

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

mybb Team reports :

Medium risk: Tasks Local File Inclusion

Medium risk: Forum Password Check Bypass

Low risk: Admin Permissions Group Title XSS

Low risk: Attachment types file extension XSS

Low risk: Moderator Tools XSS

Low risk: Security Questions XSS

Low risk: Settings Management XSS

Low risk: Templates Set Name XSS

Low risk: Usergroup Promotions XSS

Low risk: Warning Types XSS

Solution

Update the affected package.

See Also

http://www.nessus.org/u?d76a0ac3

http://www.nessus.org/u?c72b399c

Plugin Details

Severity: High

ID: 108625

File Name: freebsd_pkg_d50a50a22f3e11e886f800e04c1ea73d.nasl

Version: 1.2

Type: local

Published: 3/27/2018

Updated: 11/10/2018

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:mybb, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 3/24/2018

Vulnerability Publication Date: 3/15/2018