2 matches found
CVE-2009-2230
SQL injection vulnerability in inc/datahandlers/user.php in MyBB aka MyBulletinBoard before 1.4.7 allows remote authenticated users to execute arbitrary SQL commands via the birthdayprivacy parameter...
CVE-2009-2230
CVE-2009-2230 affects MyBB (MyBulletinBoard) prior to 1.4.7. The issue is an SQL injection in inc/datahandlers/user.php via the birthdayprivacy parameter, exploitable by remote authenticated users to run arbitrary SQL commands. The connected documents confirm the vulnerable component and the inje...