Description

Unspecified vulnerability in inc/datahandler/user.php in MyBB before 1.2.13 has unknown impact and attack vectors related to the $user['language'] variable, probably related to SQL injection.

Remediation

References

CVE-2008-3070

Related Vulnerabilities

Oracle JRE CVE-2012-1725 Vulnerability (CVE-2012-1725)

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Cross-Site Request Forgery (3.4.27)

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-39151)

PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-5094)

WordPress 4.2.2 Multiple Vulnerabilities (0.7 - 4.2.2)

Severity

High

Classification

CVE-2008-3070

Tags

Missing Update Known Vulnerabilities