CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-3579

MyBB 1.8.19 allows remote attackers to obtain sensitive information because it discloses the username upon receiving a password-reset request that lacks the code parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.8%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

https://blog.mybb.com/
https://blog.mybb.com/2019/02/27/mybb-1-8-20-released-security-maintenance-release/
https://blog.mybb.com/
https://blog.mybb.com/2019/02/27/mybb-1-8-20-released-security-maintenance-release/

Products affected by CVE-2019-3579

Mybb » Mybb » Version: 1.8.19

cpe:2.3:a:mybb:mybb:1.8.19

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-3579

Products

Pricing

Contact Us