|
|
CVE Reference: CVE-2006-2103 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-2103 |
|
|
Description: SQL injection vulnerability in MyBB (MyBulletinBoard) 1.1.1 allows remote authenticated administrators to execute arbitrary SQL commands via the (1) query string ($querystring variable) in (a) admin/adminlogs.php, which is not properly handled by adminfunctions.php; or (2) setid, (3) expand, (4) title, or (5) sid2 parameters to (b) admin/templates.php. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/26103 SREASON http://securityreason.com/securityalert/808 SAID Secunia Advisory: SA19865 OSVDB 25074 25075 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/432229/100/0/threaded |
|
| Return to the previous page. |
