MyBB < 1.4.1 Multiple Vulnerabilities
Medium Nessus Network Monitor Plugin ID 4655
SynopsisThe remote host is vulnerable to multiple attack vectors.
DescriptionThe version of MyBB installed on the remote host is vulnerable to a number of vulnerabilities. The application fails to properly parse and sanitize data sent to the 'misc.php', 'usercp2.php', 'inc/functions_online.php', and 'moderation.php' scripts. The details of these flaws are currently unknown; however, the vendor has released a fix.
SolutionUpgrade to version 1.4.1 or higher.