RSS   Vulnerabilities for 'Ajax forum stat'   RSS

2013-12-04
 
CVE-2013-6936

CWE-89
 

 
Multiple SQL injection vulnerabilities in ajaxfs.php in the Ajax forum stat (Ajaxfs) Plugin 2.0 for MyBB (aka MyBulletinBoard) allow remote attackers to execute arbitrary SQL commands via the (1) tooltip or (2) usertooltip parameter.

 

 >>> Vendor: MYBB 5 Products
MYBB
Devbb
Mybb hot editor plugin
Ajax forum stat
Merge system


Copyright 2017, cxsecurity.com

 

Back to Top