CVE-2008-0787

2008-02-15T01:00:00
ID CVE-2008-0787
Type cve
Reporter cve@mitre.org
Modified 2018-10-15T22:03:00

Description

SQL injection vulnerability in inc/datahandlers/pm.php in MyBB before 1.2.12 allows remote authenticated users to execute arbitrary SQL commands via the options[disablesmilies] parameter to private.php.