Description

SQL injection vulnerability in misc.php in MyBB (aka MyBulletinBoard) before 1.4.1 allows remote attackers to execute arbitrary SQL commands via a certain editor field.

Remediation

References

CVE-2008-3965

Related Vulnerabilities

Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3741)

WordPress Plugin CopySafe PDF Protection Unspecified Vulnerability (1.10)

MySQL CVE-2012-0578 Vulnerability (CVE-2012-0578)

WordPress 5.9.x Multiple Vulnerabilities (5.9 - 5.9.7)

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33337)

Severity

High

Classification

CVE-2008-3965 CWE-138

Tags

Missing Update Known Vulnerabilities