Unrated severityNVD Advisory· Published Jul 11, 2019· Updated Aug 4, 2024
CVE-2019-12363
CVE-2019-12363
Description
An CSRF issue was discovered in the JN-Jones MyBB-2FA plugin through 2014-11-05 for MyBB. An attacker can forge a request to an installed mybb2fa plugin to control its state via usercp.php?action=mybb2fa&do=deactivate (or usercp.php?action=mybb2fa&do=activate). A deactivate operation lowers the security of the targeted account by disabling two factor authentication.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <=2014-11-05
Patches
Vulnerability mechanics
References
2- community.mybb.com/thread-162369.htmlmitrex_refsource_MISC
- seekurity.com/blog/advisories/mybb-two-factor-authentication-extension-vulnerabilities/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.