This is a vulnerability writeup describing an SQL injection flaw in MyBB 1.0.3. The issue arises from improper sanitization of user-supplied input in the moderation.php file, allowing attackers with message moderation privileges to execute arbitrary SQL queries.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:MyBB 1.0.3
Auth required
Prerequisites:Message moderation and merging privileges