CVE-2016-9418

Severity CVSS v4.0:
Pending analysis
Type:
CWE-200 Information Leak / Disclosure
Publication date:
31/01/2017
Last modified:
20/04/2025

Description

MyBB (aka MyBulletinBoard) before 1.8.8 on Windows and MyBB Merge System before 1.8.8 on Windows might allow remote attackers to obtain sensitive information from ACP backups via vectors involving a short name.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:mybb:merge_system:*:*:*:*:*:*:*:* 1.8.7 (including)
cpe:2.3:a:mybb:mybb:*:*:*:*:*:*:*:* 1.8.7 (including)
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*