SQL injection vulnerability in moderation.php in MyBB (aka MyBulletinBoard) 1.0.3 allows remote authenticated users, with certain privileges for moderating and merging posts, to execute arbitrary SQL commands via the posts parameter.
References
Configurations
History
21 Nov 2024, 00:06
Type | Values Removed | Values Added |
---|---|---|
References | () http://myimei.com/security/2006-02-07/mybb103moderationphpsqlinject-while-merging-posts.html - Exploit, Vendor Advisory | |
References | () http://secunia.com/advisories/18754 - | |
References | () http://www.osvdb.org/22957 - | |
References | () http://www.securityfocus.com/archive/1/424335/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/16538 - | |
References | () http://www.vupen.com/english/advisories/2006/0475 - |
Information
Published : 2006-02-10 11:02
Updated : 2024-11-21 00:06
NVD link : CVE-2006-0638
Mitre link : CVE-2006-0638
CVE.ORG link : CVE-2006-0638
JSON object : View
Products Affected
mybulletinboard
- mybulletinboard
CWE