CVE-2006-1974

EPSS 0.45%
Published 21.04.2006 10:02:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

SQL injection vulnerability in index.php in MyBB (MyBulletinBoard) before 1.04 allows remote attackers to execute arbitrary SQL commands via the referrer parameter.

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Mybulletinboard ≫ Mybulletinboard Version1.0.1

Mybulletinboard ≫ Mybulletinboard Version1.0.2

Mybulletinboard ≫ Mybulletinboard Version1.0.3

Mybulletinboard ≫ Mybulletinboard Version1.0_final

Mybulletinboard ≫ Mybulletinboard Version1.0_pr2

Mybulletinboard ≫ Mybulletinboard Version1.0_preview_release_2

Mybulletinboard ≫ Mybulletinboard Version1.0_rc2

Mybulletinboard ≫ Mybulletinboard Version1.0_rc4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.45%	0.609

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://www.securityfocus.com/bid/16443

http://www.securityfocus.com/bid/16443/exploit

https://nvd.nist.gov/vuln/detail/CVE-2006-1974

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-1974

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-1974

EUVD