MyBB is a free and open source forum software. The backup management module of the Admin CP may accept `.htaccess` as the name of the backup file to be deleted, which may expose the stored backup files over HTTP on Apache servers. MyBB 1.8.38 resolves this issue. Users are advised to upgrade. There are no known workarounds for this vulnerability
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-05-01T06:27:42.162Z
Updated: 2024-08-01T22:59:32.211Z
Reserved: 2024-01-15T15:19:19.443Z
Link: CVE-2024-23335
Vulnrichment
Updated: 2024-08-01T22:59:32.211Z
NVD
Status : Awaiting Analysis
Published: 2024-05-01T07:15:38.240
Modified: 2024-05-01T13:01:51.263
Link: CVE-2024-23335
Redhat
No data.