Description
SQL injection vulnerability in index.php in MyBB (MyBulletinBoard) before 1.04 allows remote attackers to execute arbitrary SQL commands via the referrer parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Devil-00 · textwebappsphp
https://www.exploit-db.com/exploits/27155
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry x_refsource_misc
http://www.securityfocus.com/bid/16443/exploit
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/16443
Scores
EPSS
0.0045
EPSS Percentile
63.8%
Details
Status
published
Products (8)
mybulletinboard/mybulletinboard
1.0.1
mybulletinboard/mybulletinboard
1.0.2
mybulletinboard/mybulletinboard
1.0.3
mybulletinboard/mybulletinboard
1.0_final
mybulletinboard/mybulletinboard
1.0_pr2
mybulletinboard/mybulletinboard
1.0_preview_release_2
mybulletinboard/mybulletinboard
1.0_rc2
mybulletinboard/mybulletinboard
1.0_rc4
Published
Apr 21, 2006
Tracked Since
Feb 18, 2026