Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
MyBB Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2016-9416 - Vulnerability Database
MyBB

MyBB Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2016-9416

Critical
Reference: CVE-2016-9416
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-9416
Title: MyBB Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Overview:

SQL injection vulnerability in the users data handler in MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.