| VID |
21711 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The MyBulletinBoard program is vulnerable to SQL injection vulnerabilities in the 'misc.php' and 'newreply.php' scripts. MyBulletinBoard is a freely available forum package developed in PHP and MYSQL. MyBulletinBoard version 1.0 PR2 allows a remote attacker to execute arbitrary SQL commands, caused by improper filtering of user-supplied input passed to the 'fid' parameter of the 'misc.php' script and the 'icon' and 'tid' parameters of the 'newreply.php' script. These vulnerabilities could permit a remote attacker to pass malicious input to database queries, potentially resulting in data exposure, modification of the query logic, or even data modification or attacks against the database itself.
* References:
http://www.securityfocus.com/archive/1/409743/30/0/threaded
http://secunia.com/advisories/16738
* Platforms Affected:
MyBB Group, MyBulletinBoard version 1.0 PR2
Any operating system Any version |
| Recommendation |
No upgrade or patch available as of September 2005.
Upgrade to the latest version of MyBulletinBoard, when new fixed version becomes available from the MyBB Group Download Web site at http://www.mybboard.com |
| Related URL |
CVE-2005-2888 (CVE) |
| Related URL |
14762 (SecurityFocus) |
| Related URL |
22192 (ISS) |
|
