Vulnerability CVE-2009-4449

Vulnerability CVE-2009-4449

Published: 2009-12-29 Modified: 2012-02-13

Description:

Type:

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.3/10	6.9/10	6.8/10

Affected software
Mybboard -> MYBB

http://blog.mybboard.net/2009/12/29/mybb-1-4-11-released-minor-patch-security-update/

http://www.vupen.com/english/advisories/2009/3651

http://www.securityfocus.com/bid/37489

http://secunia.com/advisories/37906

http://osvdb.org/61359

http://openwall.com/lists/oss-security/2010/12/06/2

http://openwall.com/lists/oss-security/2010/10/11/8

http://openwall.com/lists/oss-security/2010/10/08/7

http://dev.mybboard.net/projects/mybb/repository/revisions/4663/diff/branches/1.4-stable/usercp.php

http://dev.mybboard.net/projects/mybb/repository/revisions/4663/diff/branches/1.4-stable/admin/modules/user/users.php

http://dev.mybboard.net/issues/617