Mybb 2fa Project

mybb-2fa_project

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Mybb 2fa

mybb-2fa

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-12363 1Mybb 2fa Project 1Mybb 2fa Jun 17, 2026 Jul 11, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An CSRF issue was discovered in the JN-Jones MyBB-2FA plugin through 2014-11-05 for MyBB. An attacker can forge a request to an installed mybb2fa plugin to control its state via usercp.php?action=mybb2fa&do=deactivate (o...Show more An CSRF issue was discovered in the JN-Jones MyBB-2FA plugin through 2014-11-05 for MyBB. An attacker can forge a request to an installed mybb2fa plugin to control its state via usercp.php?action=mybb2fa&do=deactivate (or usercp.php?action=mybb2fa&do=activate). A deactivate operation lowers the security of the targeted account by disabling two factor authentication.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2019-12363

1Mybb 2fa Project

1Mybb 2fa

Jun 17, 2026

Jul 11, 2019

N/A· v4

8.8 HIGH· v3

6.8 MEDIUM· v2

An CSRF issue was discovered in the JN-Jones MyBB-2FA plugin through 2014-11-05 for MyBB. An attacker can forge a request to an installed mybb2fa plugin to control its state via usercp.php?action=mybb2fa&do=deactivate (or usercp.php?action=mybb2fa&do=activate). A deactivate operation lowers the security of the targeted account by disabling two factor authentication.Show less