Description
Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) before 1.6.7 allow remote administrators to execute arbitrary SQL commands via unspecified vectors in the (1) user search or (2) Mail Log in the Admin Control Panel (ACP).
Remediation
References
Related Vulnerabilities
Atlassian Jira Other Vulnerability (CVE-2019-20101)
Jenkins CVE-2013-0158 Vulnerability (CVE-2013-0158)
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2020-5360)
WordPress Plugin WORDPRESS VIDEO GALLERY Multiple Cross-Site Request Forgery Vulnerabilities (2.8)
WordPress Plugin Email Before Download Unspecified Vulnerability (6.9.3)