Description SQL Injection vulnerability in MyBB before 1.8.26 via User Groups. (issue 3 of 3). Remediation References CVE-2021-27948 Related Vulnerabilities WordPress Plugin OAuth Single Sign On-SSO (OAuth Client) Security Bypass (6.22.5) WordPress Plugin Popup Builder-Create highly converting, mobile friendly marketing popups Cross-Site Scripting (4.2.7) Oracle Database Server CVE-2019-2547 Vulnerability (CVE-2019-2547) WordPress Plugin AdPlugg WordPress Ad Cross-Site Scripting (1.1.33) Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5490) Severity High Classification CVE-2021-27948 CWE-138 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities