CVE-2015-8974
The CVE affects MyBB (MyBulletinBoard) and relates to a SQL injection in the Group Promotions module of the admin control panel. Affected versions are MyBB before 1.6.18 and 1.8.x before 1.8.6; the issue allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Root cause...