SQL injection vulnerability in search.php for MyBulletinBoard (MyBB) 1.00 Release Candidate 1 through 4 allows remote malicious users to execute arbitrary SQL commands via the uid parameter. NOTE: this issue might overlap CVE-2005-0282.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mybulletinboard mybulletinboard 1.00_rc4 |
||
mybulletinboard mybulletinboard 1.00_rc1 |
||
mybulletinboard mybulletinboard 1.00_rc2 |
||
mybulletinboard mybulletinboard 1.00_rc3 |