CVEDB API

Vulnerabilities

Vulnerable Software

Mybb: >> Mybb >> 1.8.31 Security Vulnerabilities

CVE-2022-43709

MyBB 1.8.31 has a SQL injection vulnerability in the Admin CP's Users module allows remote authenticated users to modify the query string via direct user input or stored search filter settings.

CVSS Score

4.9

EPSS Score

0.001

Published

2022-11-22

CVE-2022-43707

MyBB 1.8.31 has a Cross-site scripting (XSS) vulnerability in the visual MyCode editor (SCEditor) allows remote attackers to inject HTML via user input or stored data

CVSS Score

6.1

EPSS Score

0.001

Published

2022-11-22

CVE-2011-4569

SQL injection vulnerability in userbarsettings.php in the Userbar plugin 2.2 for MyBB Forum allows remote attackers to execute arbitrary SQL commands via the image2 parameter.

CVSS Score

7.5

EPSS Score

0.002

Published

2011-11-29

CVE-2008-6198

SQL injection vulnerability in pages.php in Custom Pages 1.0 plugin for MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL commands via the page parameter.

CVSS Score

7.5

EPSS Score

0.001

Published

2009-02-20

Page 2

Vulnerabilities

Vulnerable Software

Mybb: >> Mybb >> 1.8.31 Security Vulnerabilities

Products

Pricing

Contact Us