CVE-2010-4629

Published: Dec 30, 2010Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

MyBB (aka MyBulletinBoard) before 1.4.12 does not properly restrict uid values for group join requests, which allows remote attackers to cause a denial of service (resource consumption) by using guest access to submit join request forms for moderated groups, related to usercp.php and managegroup.php.

Affected (37)

Products: Mybb: Mybb

Mybb

1 product

Mybb

Configuration A

37 vulnerable

Vulnerable Software	Affected Versions
Mybb Mybb	Up to 1.4.11
Mybb Mybb	Version 1.00
Mybb Mybb	Version 1.01
Mybb Mybb	Version 1.02
Mybb Mybb	Version 1.03
Mybb Mybb	Version 1.04
Mybb Mybb	Version 1.1.0
Mybb Mybb	Version 1.1.1
Mybb Mybb	Version 1.1.2
Mybb Mybb	Version 1.1.3
Mybb Mybb	Version 1.1.4
Mybb Mybb	Version 1.1.5
Mybb Mybb	Version 1.1.6
Mybb Mybb	Version 1.1.7
Mybb Mybb	Version 1.1.8
Mybb Mybb	Version 1.2.0
Mybb Mybb	Version 1.2.10
Mybb Mybb	Version 1.2.11
Mybb Mybb	Version 1.2.12
Mybb Mybb	Version 1.2.13
Mybb Mybb	Version 1.2.1
Mybb Mybb	Version 1.2.2
Mybb Mybb	Version 1.2.3
Mybb Mybb	Version 1.2.4
Mybb Mybb	Version 1.2.5
Mybb Mybb	Version 1.2.6
Mybb Mybb	Version 1.2.7
Mybb Mybb	Version 1.2.8
Mybb Mybb	Version 1.2.9
Mybb Mybb	Version 1.2
Mybb Mybb	Version 1.4.0
Mybb Mybb	Version 1.4.10
Mybb Mybb	Version 1.4.2
Mybb Mybb	Version 1.4.3
Mybb Mybb	Version 1.4.6
Mybb Mybb	Version 1.4.8
Mybb Mybb	Version 1.4.9