CVE-2025-29459

CVSS v2.0

8.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:P/A:P

Name of the Vulnerable Software and Affected Versions MyBB version 1.8.38

Description An issue in MyBB allows a remote attacker to obtain sensitive information via the Mail function.

Recommendations For MyBB version 1.8.38, consider disabling the Mail function as a temporary workaround until a patch is available. Restrict access to sensitive information to minimize the risk of exploitation.

Exploit

Fix

SSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-918

Related Identifiers

BDU:2025-08886

CVE-2025-29459

Affected Products

Mybb

CVE-2025-29459

Weakness Enumeration

Related Identifiers

Affected Products

References · 12