MyBB (aka MyBulletinBoard) before 1.4.12 does not properly restrict uid values for group join requests, which allows remote attackers to cause a denial of service (resource consumption) by using guest access to submit join request forms for moderated groups, related to usercp.php and managegroup.php.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2010-12-30T20:00:00
Updated: 2024-08-07T03:51:17.935Z
Reserved: 2010-12-30T00:00:00
Link: CVE-2010-4629

No data.

Status : Modified
Published: 2010-12-30T21:00:02.690
Modified: 2024-11-21T01:21:24.027
Link: CVE-2010-4629

No data.