CVE-2010-4624

MyBB (aka MyBulletinBoard) before 1.4.12 allows remote authenticated users to bypass intended restrictions on the number of [img] MyCodes by editing a post after it has been created.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.5 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
mybbmybb
𝑥
≤ 1.4.11
mybbmybb
1.00
mybbmybb
1.01
mybbmybb
1.1.0
mybbmybb
1.1.1
mybbmybb
1.1.2
mybbmybb
1.1.3
mybbmybb
1.1.4
mybbmybb
1.1.5
mybbmybb
1.1.6
mybbmybb
1.1.7
mybbmybb
1.1.8
mybbmybb
1.02
mybbmybb
1.2
mybbmybb
1.2.0
mybbmybb
1.2.1
mybbmybb
1.2.2
mybbmybb
1.2.3
mybbmybb
1.2.4
mybbmybb
1.2.5
mybbmybb
1.2.6
mybbmybb
1.2.7
mybbmybb
1.2.8
mybbmybb
1.2.9
mybbmybb
1.2.10
mybbmybb
1.2.11
mybbmybb
1.2.12
mybbmybb
1.2.13
mybbmybb
1.03
mybbmybb
1.04
mybbmybb
1.4.0
mybbmybb
1.4.2
mybbmybb
1.4.3
mybbmybb
1.4.6
mybbmybb
1.4.8
mybbmybb
1.4.9
mybbmybb
1.4.10
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://blog.mybb.com/2010/04/13/mybb-1-4-12-released-security-maintenance-update/
http://dev.mybboard.net/issues/728
http://openwall.com/lists/oss-security/2010/10/08/7
http://openwall.com/lists/oss-security/2010/10/11/8
http://openwall.com/lists/oss-security/2010/12/06/2
https://exchange.xforce.ibmcloud.com/vulnerabilities/64518
http://blog.mybb.com/2010/04/13/mybb-1-4-12-released-security-maintenance-update/
http://dev.mybboard.net/issues/728
http://openwall.com/lists/oss-security/2010/10/08/7
http://openwall.com/lists/oss-security/2010/10/11/8
http://openwall.com/lists/oss-security/2010/12/06/2
https://exchange.xforce.ibmcloud.com/vulnerabilities/64518