CVE-2012-2324 Information
Feb 14, 2021
cve
Description
Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) before 1.6.7 allow remote administrators to execute arbitrary SQL commands via unspecified vectors in the (1) user search or (2) Mail Log in the Admin Control Panel (ACP).
Reference
http://blog.mybb.com/2012/04/01/mybb-1-6-7-update-1-8-development/ http://www.openwall.com/lists/oss-security/2012/05/07/13 http://www.openwall.com/lists/oss-security/2012/05/07/14 http://www.securityfocus.com/bid/53417
Share on: