CVE-2006-2103

SQL injection vulnerability in MyBB MyBulletinBoard 1.1.1 allows remote authenticated administrators to execute arbitrary SQL commands via the 1 query string $querystring variable in a admin/adminlogs.php, which is not properly handled by adminfunctions.php; or 2 setid, 3 expand, 4 title, or 5 si...

MyBB1.1.1.txt

MyBB Local SQL Injections .. This Local Injections Only For Admin 1 code adminfunctions.php , line 730 $db-query"INSERT INTO ".TABLEPREFIX."adminlog uid,dateline,scriptname,action,querystring,ipaddress VALUES...