CVE-2009-2230

Metadata

CVE-2009-2230
7.5
blog.mybboard.net, mybboard.net, exploit-db.com, securityfocus.com, vupen.com
2009-06-26
2017-09-21 21:07

Description

SQL injection vulnerability in inc/datahandlers/user.php in MyBB (aka MyBulletinBoard) before 1.4.7 allows remote authenticated users to execute arbitrary SQL commands via the birthdayprivacy parameter.

Related Vulnerabilities