High severity7.2NVD Advisory· Published Jun 26, 2018· Updated Jun 17, 2026
CVE-2018-1000502
CVE-2018-1000502
Description
MyBB Group MyBB contains a File Inclusion vulnerability in Admin panel (Tools and Maintenance -> Task Manager -> Add New Task) that can result in Allows Local File Inclusion on modern PHP versions and Remote File Inclusion on ancient PHP versions. This attack appear to be exploitable via Must have access to admin panel. This vulnerability appears to have been fixed in 1.8.15.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.8.14
- Range: <1.8.15
Patches
Vulnerability mechanics
References
2- www.batterystapl.es/2018/03/local-file-inclusion-and-reading.htmlnvdThird Party Advisory
- blog.mybb.com/2018/03/15/mybb-1-8-15-released-security-maintenance-release/nvdVendor Advisory
News mentions
0No linked articles in our index yet.