MyBB 1.8.6 Cross Site Request Forgery / Weak Hashing
Posted by deepcore on September 17, 2016 – 3:55 pm
MyBB version 1.8.6 suffers from a cross site request forgery vulnerability. Additionally, it stores passwords using weak hashing and sends password in clear text via email.
Post a reply
You must be logged in to post a comment.