CVE-2015-2335
MyBB < 1.8.4 - Exposure of Sensitive Information via JSON Library
Title source: llmDescription
A JSON library in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to obtain the installation path via unknown vectors.
References (3)
Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
http://blog.mybb.com/2015/02/15/mybb-1-8-4-released-feature-update-security-maintenance-release/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/73216
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031953
Scores
EPSS
0.0135
EPSS Percentile
68.2%
Details
CWE
CWE-200
Status
published
Products (1)
mybb/mybb
< 1.8.3
Published
Mar 18, 2015
Tracked Since
Feb 18, 2026