Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in MyBB (MyBulletinBoard) 1.1.1 allows remote authenticated administrators to execute arbitrary SQL commands via the (1) query string ($querystring variable) in (a) admin/adminlogs.php, which is not properly handled by adminfunctions.php; or (2) setid, (3) expand, (4) title, or (5) sid2 parameters to (b) admin/templates.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MyBB 多个SQL注入漏洞
Vulnerability Description
MyBB (MyBulletinBoard) 1.1.1 中存在SQL注入漏洞。这使得远程认证管理员可以借助于(a) admin/adminlogs.php中的查询字符串($querystring变量) (该变量没有在adminfunctions.php中正确地处理),或传递到(b) admin/templates.php中的参数(2) setid、(3) expand、(4) title或(5) sid2执行任意SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A