MyBB Permissions Privileges and Access Controls Vulnerability - CVE-2010-4629 - Vulnerability Database

MyBB Permissions Privileges and Access Controls Vulnerability - CVE-2010-4629

Medium

Reference: CVE-2010-4629

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2010-4629

Title: MyBB Permissions Privileges and Access Controls Vulnerability

Overview:

MyBB (aka MyBulletinBoard) before 1.4.12 does not properly restrict uid values for group join requests which allows remote attackers to cause a denial of service (resource consumption) by using guest access to submit join request forms for moderated groups related to usercp.php and managegroup.php.