Known Vulnerabilities for products from Mybulletinboard
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Mybulletinboard".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2009-2230 json | SQL injection vulnerability in inc/datahandlers/user.php in MyBB (aka MyBulletinBoard) before 1.4.7 allows remote authenticat... | Not Provided | 2009-06-26 | 2026-04-23 |
| CVE-2008-0787 json | SQL injection vulnerability in inc/datahandlers/pm.php in MyBB before 1.2.12 allows remote authenticated users to execute arb... | Not Provided | 2008-02-15 | 2026-04-23 |
| CVE-2008-0382 json | Multiple eval injection vulnerabilities in MyBB 1.2.10 and earlier allow remote attackers to execute arbitrary code via the s... | Not Provided | 2008-01-22 | 2026-04-23 |
| CVE-2007-2211 json | SQL injection vulnerability in calendar.php in MyBB (aka MyBulletinBoard) 1.2.5 and earlier allows remote attackers to execut... | Not Provided | 2007-04-24 | 2026-04-23 |
| CVE-2007-1964 json | member.php in MyBB (aka MyBulletinBoard), when debug mode is available, allows remote authenticated users to change the passw... | Not Provided | 2007-04-11 | 2026-04-23 |
| CVE-2007-1963 json | SQL injection vulnerability in the create_session function in class_session.php in MyBB (aka MyBulletinBoard) 1.2.3 and earli... | Not Provided | 2007-04-11 | 2026-04-23 |
| CVE-2006-4972 json | Cross-site scripting (XSS) vulnerability in archive/index.php/forum-4.html in MyBB (aka MyBulletinBoard) allows remote attack... | 5.1 - MEDIUM | 2006-09-25 | 2018-10-17 |
| CVE-2006-4971 json | MyBB (aka MyBulletinBoard) allows remote attackers to obtain sensitive information via a direct request for inc/plugins/hello... | 5 - MEDIUM | 2006-09-25 | 2018-10-17 |
| CVE-2006-4707 json | Cross-site scripting (XSS) vulnerability in admin/global.php (aka the Admin CP login form) in MyBB (aka MyBulletinBoard) 1.1.... | 6.8 - MEDIUM | 2006-09-12 | 2018-10-17 |
| CVE-2006-4706 json | Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.1.7 allows remote attacker... | 6.8 - MEDIUM | 2006-09-12 | 2018-10-17 |
| CVE-2006-4449 json | Cross-site scripting (XSS) vulnerability in attachment.php in MyBulletinBoard (MyBB) 1.1.7 and possibly other versions allows... | 5.1 - MEDIUM | 2006-08-30 | 2018-10-17 |
| CVE-2006-3954 json | Directory traversal vulnerability in usercp.php in MyBB (aka MyBulletinBoard) 1.x allows remote attackers to read arbitrary f... | 5 - MEDIUM | 2006-08-01 | 2018-10-17 |
| CVE-2006-3953 json | Cross-site scripting (XSS) vulnerability in usercp.php in MyBB (aka MyBulletinBoard) 1.x allows remote attackers to inject ar... | 4.3 - MEDIUM | 2006-08-01 | 2018-10-17 |
| CVE-2006-3775 json | SQL injection vulnerability in the init function in class_session.php in MyBB (aka MyBulletinBoard) 1.1.5 allows remote attac... | 7.5 - HIGH | 2006-07-24 | 2018-10-17 |
| CVE-2006-3761 json | Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.0 RC2 through 1.1.4 allows... | 4.3 - MEDIUM | 2006-07-21 | 2018-10-17 |
| CVE-2006-3760 json | Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) 1.1.4 allow remote attackers to execute arbitrary SQL co... | 7.5 - HIGH | 2006-07-21 | 2017-07-20 |
| CVE-2006-3759 json | Unspecified vulnerability in MyBB (aka MyBulletinBoard) 1.1.4, related has unspecified impact and attack vectors related to "... | 5 - MEDIUM | 2006-07-21 | 2017-07-20 |
| CVE-2006-3758 json | inc/init.php in Archive Mode (Light) in MyBB (aka MyBulletinBoard) 1.1.4 calls the extract function with EXTR_OVERWRITE on HT... | 7.5 - HIGH | 2006-07-21 | 2017-07-20 |
| CVE-2006-3420 json | Cross-site request forgery (CSRF) vulnerability in editpost.php in MyBulletinBoard (MyBB) before 1.1.5 allows remote attacker... | 7.5 - HIGH | 2006-07-07 | 2017-07-20 |
| CVE-2006-3243 json | SQL injection vulnerability in usercp.php in MyBB (MyBulletinBoard) 1.0 through 1.1.3 allows remote attackers to execute arbi... | 7.5 - HIGH | 2006-06-27 | 2017-07-20 |