Mybb is prone to a remote code-execution vulnerability.This allows a remote attacker to exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts may result in a denial-of-service condition.
Vulnerable Systems:
* Mybb Merge System 1.8.7
* Mybb 1.8.7
MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allow remote attackers to have impact via vectors related to "loose comparison false positives."