Vulnerabilities > CVE-2006-2336 - SQL Injection vulnerability in Mybulletinboard 1.1.1

047910
CVSS 6.4 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
mybulletinboard
exploit available

Summary

SQL injection vulnerability in showthread.php in MyBB (aka MyBulletinBoard) 1.1.1 allows remote attackers to execute arbitrary SQL commands via the comma parameter.

Vulnerable Configurations

Part Description Count
Application
Mybulletinboard
1

Exploit-Db

descriptionMyBB 1.1.1 Showthread.PHP SQL Injection Vulnerability. CVE-2006-2336. Webapps exploit for php platform
idEDB-ID:27843
last seen2016-02-03
modified2006-05-09
published2006-05-09
reporterBreeeeh
sourcehttps://www.exploit-db.com/download/27843/
titleMyBB 1.1.1 Showthread.PHP SQL Injection Vulnerability