cvelist/2015/8xxx/CVE-2015-8973.json

{
    "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2015-8973",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "n/a",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "n/a"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "n/a"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "xmlhttp.php in MyBB (aka MyBulletinBoard) before 1.6.18 and 1.8.x before 1.8.6 and MyBB Merge System before 1.8.6 allows remote attackers to bypass intended access restrictions via vectors related to the forum password."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "n/a"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://blog.mybb.com/2015/09/07/mybb-1-8-6-1-6-18-merge-system-1-8-6-release/",
                "refsource": "CONFIRM",
                "url": "https://blog.mybb.com/2015/09/07/mybb-1-8-6-1-6-18-merge-system-1-8-6-release/"
            },
            {
                "name": "94397",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/94397"
            },
            {
                "name": "[oss-security] 20161117 Re: CVE request: MyBB multiple vulnerabilities",
                "refsource": "MLIST",
                "url": "http://www.openwall.com/lists/oss-security/2016/11/18/1"
            },
            {
                "name": "[oss-security] 20161110 CVE request: MyBB multiple vulnerabilities",
                "refsource": "MLIST",
                "url": "http://www.openwall.com/lists/oss-security/2016/11/10/8"
            }
        ]
    }
}