MyBB 1.0.3 - moderation.php SQL Injection

MyBB 1.0.3 - moderation.php SQL Injection source: https://www.securityfocus.com/bid/16538/info MyBB is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input. Successful exploitation can allow an attacker to bypass authentication and gain...

[Full-disclosure] phpBB 2.0.19 Cross Site Request Forgeries and XSS Admin

Orginal Source: http://securityreason.com/achievementsecurityalert/31 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpBB 2.0.19 Cross Site Request Forgeries and XSS Admin Author: Maksymilian Arciemowicz cXIb8O3 Date: 3.2.2006 from SecurityReason.Com CVE-2006-0437 for the XSS issues CVE-2006-0438...

SQL Injection in phpBB's groupcp.php

BugTraq, I have found an SQL injection vulnerability in phpBB. Hoever, I don't think this is going to be be a wide spread problem as it will only work if you are the moderator of a group. How the SQL injection works: In groupscp, it uses an array set to delete members from certain groups. This...

Content moderation - Moderately critical - Access bypass

More info at https://www.drupal.org/sa-core-2018-006...

Content moderation - Moderately critical - Access bypass

More info at https://www.drupal.org/sa-core-2018-006...