CVE-2022-45867

Name of the Vulnerable Software and Affected Versions MyBB versions prior to 1.8.33

Description The issue allows remote authenticated users with high privileges to achieve local file inclusion and execution through the Admin CP Languages module, due to a Directory Traversal vulnerability.

Recommendations For versions prior to 1.8.33, update to version 1.8.33 or later to resolve the issue. As a temporary workaround, consider restricting access to the Admin CP Languages module to minimize the risk of exploitation.