CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mybulletinboard: >> Mybulletinboard >> 1.1.6 Security Vulnerabilities

CVE-2009-2230

SQL injection vulnerability in inc/datahandlers/user.php in MyBB (aka MyBulletinBoard) before 1.4.7 allows remote authenticated users to execute arbitrary SQL commands via the birthdayprivacy parameter.

CVSS Score

7.5

EPSS Score

0.016

Published

2009-06-26

CVE-2008-0787

SQL injection vulnerability in inc/datahandlers/pm.php in MyBB before 1.2.12 allows remote authenticated users to execute arbitrary SQL commands via the options[disablesmilies] parameter to private.php.

CVSS Score

6.5

EPSS Score

0.016

Published

2008-02-15

Page 1

Vulnerabilities

Vulnerable Software

Mybulletinboard: >> Mybulletinboard >> 1.1.6 Security Vulnerabilities

Products

Pricing

Contact Us