Description

SQL injection vulnerability in the moderation tool in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

CVE-2016-9402

Related Vulnerabilities

WordPress Plugin Header Footer Code Manager SQL Injection (1.1.13)

Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26273)

WordPress Plugin Paytium:Mollie payment forms & donations Cross-Site Scripting (3.1.1)

Ampache Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-47184)

WordPress Plugin Appointment Booking Calendar CSV Injection (1.3.34)

Severity

Critical

Classification

CVE-2016-9402 CWE-138 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities