Full Disclosure mailing list archives

Re: Multiple vulnerabilities in MyBB

From: Henri Salo <henri () nerv fi>
Date: Wed, 27 Apr 2011 22:49:36 +0300

On Fri, Apr 22, 2011 at 07:21:55PM +0300, MustLive wrote:

Hello list!

I want to warn you about Information Leakage, Abuse of Functionality,
Insufficient Anti-automation and Brute Force vulnerabilities in
MyBB.

<snip>

Information Leakage (WASC-13):

<snip>

Ouh this is better than most comedy-movies.

Best regards,
Henri

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Multiple vulnerabilities in MyBB MustLive (Apr 22)
- Re: Multiple vulnerabilities in MyBB Andrew Farmer (Apr 23)
  - Re: Multiple vulnerabilities in MyBB MustLive (Apr 25)
    - Re: Multiple vulnerabilities in MyBB Zach C. (Apr 25)
    - Re: Multiple vulnerabilities in MyBB MustLive (Apr 27)
    - Re: Multiple vulnerabilities in MyBB Zach C. (Apr 27)
    - Insect Pro - Advisory 2011 0427 Persistent Cross-Site Scripting (XSS) in xMatters AlarmPoint Juan Sacco (Apr 28)
- Re: Multiple vulnerabilities in MyBB Henri Salo (Apr 27)