CVE-2006-3243

SQL injection vulnerability in usercp.php in MyBB (MyBulletinBoard) 1.0 through 1.1.3 allows remote attackers to execute arbitrary SQL commands via the showcodebuttons parameter.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.0_final:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.0_pr2:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.0_preview_release_2:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.00_rc1:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.00_rc2:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.0_rc2:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.00_rc3:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.0_rc4:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.00_rc4:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.00_rc4_security_patch:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.01:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.1:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:mybulletinboard:mybulletinboard:1.04:*:*:*:*:*:*:*

History

21 Nov 2024, 00:13

Type Values Removed Values Added
References () http://community.mybboard.net/showthread.php?tid=9955 - () http://community.mybboard.net/showthread.php?tid=9955 -
References () http://myimei.com/security/2006-06-21/mybb113option-update-for-code-buttonssql-injection-admin-access.html - () http://myimei.com/security/2006-06-21/mybb113option-update-for-code-buttonssql-injection-admin-access.html -
References () http://secunia.com/advisories/20795 - Patch, Vendor Advisory () http://secunia.com/advisories/20795 - Patch, Vendor Advisory
References () http://securityreason.com/securityalert/1147 - () http://securityreason.com/securityalert/1147 -
References () http://www.securityfocus.com/archive/1/438209 - () http://www.securityfocus.com/archive/1/438209 -
References () http://www.vupen.com/english/advisories/2006/2511 - () http://www.vupen.com/english/advisories/2006/2511 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/27410 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/27410 -

Information

Published : 2006-06-27 10:05

Updated : 2024-11-21 00:13


NVD link : CVE-2006-3243

Mitre link : CVE-2006-3243

CVE.ORG link : CVE-2006-3243


JSON object : View

Products Affected

mybulletinboard

  • mybulletinboard