CVE-2005-2888

2005-09-14T16:03:00
ID CVE-2005-2888
Type cve
Reporter NVD
Modified 2017-07-10T21:33:01

Description

Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) Preview Release 2 allow remote attackers to execute arbitrary SQL commands via the (1) fid parameter to misc.php or (2) Content-Disposition field in the HTTP header to newreply.php.