MyBB unspecified user group manipulation
| mybb-user-groups-unspecified (27446) |  Low Risk |
Description:
An unspecified vulnerability in MyBB could allow a remote attacker to manipulate user groups.
Consequences:
Data Manipulation
Remedy:
Upgrade to the latest version of MyBB (1.1.5 or later), available from the MyBB Web site. See References.
References:
- MyBB Community Forums, 06-28-2006: MyBB 1.1.5 Released.
- MyBB Web site: MyBB - Home.
- CVE-2006-3759: Unspecified vulnerability in MyBB (aka MyBulletinBoard) 1.1.4, related has unspecified impact and attack vectors related to user group manipulation.
- OSVDB ID: 26810: MyBulletinBoard (MyBB) Unspecified User Group Manipulation
- SA20873: MyBB Multiple Vulnerabilities
Platforms Affected:
- MyBB MyBB 1.0 PR2 - 1.1.4
Reported:
Jun 24, 2006
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net