CVE-2022-43709

Description

MyBB 1.8.31 has a SQL injection vulnerability in the Admin CP's Users module allows remote authenticated users to modify the query string via direct user input or stored search filter settings.

Related CPE's

a mybb mybb ********

References

https://github.com/mybb/mybb/security/advisories/GHSA-ggp5-454p-867v

PatchThird Party Advisory

https://mybb.com

Product

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io