CVE-2005-2580

MyBulletinBoard 1.00 RC4 - SQL Injection via Username Field or Action Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2005-2580. PoCs published by phuket.

AI-analyzed exploit summary This exploit demonstrates an SQL injection vulnerability in MyBulletinBoard's admin/index.php, allowing an attacker to bypass authentication by injecting a malicious SQL query into the username field. The payload ' or 1=1 /* manipulates the SQL query to return true, granting administrative access without valid credentials.

Description

Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 with Security Patch allow remote attackers to execute arbitrary SQL commands via the Username field in (1) index.php or (2) member.php, action parameter to (3) search.php or (4) member.php, or (5) polloptions parameter to polls.php.

Exploits (4)

exploitdb WORKING POC VERIFIED
by phuket · textwebappsphp
https://www.exploit-db.com/exploits/26147

This exploit demonstrates an SQL injection vulnerability in MyBulletinBoard's admin/index.php, allowing an attacker to bypass authentication by injecting a malicious SQL query into the username field. The payload ' or 1=1 /* manipulates the SQL query to return true, granting administrative access without valid credentials.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: MyBulletinBoard (version not specified)
No auth needed
Prerequisites: Access to the admin login page of MyBulletinBoard
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by phuket · textwebappsphp
https://www.exploit-db.com/exploits/26149

The provided text describes a SQL injection vulnerability in MyBulletinBoard, specifically in the polls.php file. It outlines the vulnerability's impact and provides a sample exploit URL but lacks executable code.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: MyBulletinBoard (version not specified)
No auth needed
Prerequisites: Access to the polls.php endpoint · User-supplied input not properly sanitized
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by phuket · textwebappsphp
https://www.exploit-db.com/exploits/26148

This is a writeup describing SQL injection vulnerabilities in MyBulletinBoard. It provides examples of vulnerable URLs but does not include executable exploit code.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: MyBulletinBoard (version not specified)
No auth needed
Prerequisites: Access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by phuket · textwebappsphp
https://www.exploit-db.com/exploits/26150

The provided text describes a SQL injection vulnerability in MyBulletinBoard, detailing the lack of input sanitization and potential impacts, including administrative access. It includes a generic example URL for exploitation but lacks executable code.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: MyBulletinBoard (version not specified)
No auth needed
Prerequisites: Access to the target application's search.php endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/14553
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=112387501519835&w=2

Scores

EPSS 0.0208
EPSS Percentile 79.1%

Details

Status published
Products (1)
mybulletinboard/mybulletinboard 1.00_rc4_security_patch
Published Aug 16, 2005
Tracked Since Feb 18, 2026