Unrated severityNVD Advisory· Published May 14, 2007· Updated Jun 16, 2026
CVE-2007-0689
CVE-2007-0689
Description
MyBB 1.2.4 allows remote attackers to obtain sensitive information via the (1) action[] parameter to member.php, (2) imagehash[] parameter to captcha.php, and (3) a direct request to inc/datahandlers/event.php, which reveal the installation path in the resulting error message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
7- marc.infonvdExploitVendor Advisory
- www.netvigilance.com/advisory0017nvdExploitVendor Advisory
- osvdb.org/35548nvd
- osvdb.org/35549nvd
- www.osvdb.org/34155nvd
- www.securityfocus.com/archive/1/468549/100/0/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/34336nvd
News mentions
0No linked articles in our index yet.