CVE-2012-2325

2012-08-1318:00:00

redhat

www.cve.org

cve-2012-2325

user inline moderation

admin control panel

mybb

sql injection

AI Score

8.3

Confidence

Low

EPSS

0.002

Percentile

52.1%

JSON

SQL injection vulnerability in the User Inline Moderation feature in the Admin Control Panel (ACP) in MyBB (aka MyBulletinBoard) before 1.6.7 allows remote administrators to execute arbitrary SQL commands via unspecified vectors.

References

blog.mybb.com/2012/04/01/mybb-1-6-7-update-1-8-development/

www.openwall.com/lists/oss-security/2012/05/07/13

www.openwall.com/lists/oss-security/2012/05/07/14

www.securityfocus.com/bid/53417