CVE-2009-2230

2009-06-26T18:30:00
ID CVE-2009-2230
Type cve
Reporter cve@mitre.org
Modified 2017-09-19T01:29:00

Description

SQL injection vulnerability in inc/datahandlers/user.php in MyBB (aka MyBulletinBoard) before 1.4.7 allows remote authenticated users to execute arbitrary SQL commands via the birthdayprivacy parameter.