Lucene search
K

4 matches found

Prion
Prion
added 2006/01/16 9:3 p.m.22 views

Sql injection

The original distribution of MyBulletinBoard MyBB to update from older versions to 1.0.2 omits or includes older versions of certain critical files, which allows attackers to conduct 1 SQL injection attacks via an attachment name that is not properly handled by inc/functionsupload.php...

7.5CVSS7.6AI score0.01369EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2006/01/16 9:3 p.m.25 views

Sql injection

Multiple unspecified vulnerabilities in MyBulletinBoard MyBB before 1.0.2 have unspecified impact and attack vectors, related to 1 admin/moderate.php, 2 admin/themes.php, 3 inc/functions.php, 4 inc/functionsupload.php, 5 printthread.php, and 6 usercp.php, and probably related to SQL injection...

10CVSS7.9AI score0.01369EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2006/01/02 12:0 a.m.49 views

CVE-2005-4602

CVE-2005-4602 relates to MyBB before 1.0.1, where an SQL injection vulnerability exists in inc/functions_upload.php that can be exploited via the file extension of an uploaded attachment to execute arbitrary SQL. Evidence in connected records confirms this issue and links it to later notes that M...

7.5CVSS8.2AI score0.01369EPSS
Exploits0References6
Cvelist
Cvelist
added 2006/01/02 12:0 a.m.19 views

CVE-2005-4602

SQL injection vulnerability in inc/functionupload.php in MyBB before 1.0.1 allows remote attackers to execute arbitrary SQL commands via the file extension of an uploaded file attachment...

8.1AI score0.01369EPSS
Exploits0References6
Rows per page
Query Builder