Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

MyBB < 1.4.4 CSRF



The remote host is vulnerable to a cross-site request forgery (CSRF) attack.


The version of MyBB installed on the remote host is vulnerable to an information-disclosure flaw. Specifically, the 'my_post_key' variable of the 'moderation.php' script can be harvested by malicious third party sites. An attacker can use this information to generate cross-site request forgery (CSRF) attacks.


Upgrade to version 1.4.4 or higher.