6.5
CVE-2006-0638
- EPSS 1.21%
- Veröffentlicht 10.02.2006 11:02:00
- Zuletzt bearbeitet 16.06.2026 22:20:59
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
SQL injection vulnerability in moderation.php in MyBB (aka MyBulletinBoard) 1.0.3 allows remote authenticated users, with certain privileges for moderating and merging posts, to execute arbitrary SQL commands via the posts parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mybulletinboard ≫ Mybulletinboard Version1.0.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.21% | 0.644 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 8 | 6.4 |
AV:N/AC:L/Au:S/C:P/I:P/A:P
|
http://myimei.com/security/2006-02-07/mybb103moderationphpsqlinject-while-merging-posts.html
http://secunia.com/advisories/18754
http://www.osvdb.org/22957
http://www.securityfocus.com/archive/1/424335/100/0/threaded
http://www.securityfocus.com/bid/16538
http://www.vupen.com/english/advisories/2006/0475