368 matches found
Sql injection
SQL injection vulnerability in moderation.php in MyBB aka MyBulletinBoard 1.0.3 allows remote authenticated users, with certain privileges for moderating and merging posts, to execute arbitrary SQL commands via the posts parameter...
CVE-2006-0638
SQL injection vulnerability in moderation.php in MyBB aka MyBulletinBoard 1.0.3 allows remote authenticated users, with certain privileges for moderating and merging posts, to execute arbitrary SQL commands via the posts parameter...
MyBB 1.0.3 - 'moderation.php' SQL Injection
source: https://www.securityfocus.com/bid/16538/info MyBB is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input. Successful exploitation can allow an attacker to bypass authentication and gain administrative access to a site, modify data...
MyBB 1.0.3 - moderation.php SQL Injection
MyBB 1.0.3 - moderation.php SQL Injection source: https://www.securityfocus.com/bid/16538/info MyBB is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input. Successful exploitation can allow an attacker to bypass authentication and gain...
[Full-disclosure] phpBB 2.0.19 Cross Site Request Forgeries and XSS Admin
Orginal Source: http://securityreason.com/achievementsecurityalert/31 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpBB 2.0.19 Cross Site Request Forgeries and XSS Admin Author: Maksymilian Arciemowicz cXIb8O3 Date: 3.2.2006 from SecurityReason.Com CVE-2006-0437 for the XSS issues CVE-2006-0438...
SQL Injection in phpBB's groupcp.php
BugTraq, I have found an SQL injection vulnerability in phpBB. Hoever, I don't think this is going to be be a wide spread problem as it will only work if you are the moderator of a group. How the SQL injection works: In groupscp, it uses an array set to delete members from certain groups. This...
Content moderation - Moderately critical - Access bypass
More info at https://www.drupal.org/sa-core-2018-006...
Content moderation - Moderately critical - Access bypass
More info at https://www.drupal.org/sa-core-2018-006...