CVE-2010-5096: CVE-2010-5096

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-5096

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) before 1.6.1 allow remote attackers to execute arbitrary SQL commands via the keywords parameter in a (1) do_search action to search.php or (2) do_stuff action to private.php. NOTE: the vendor disputes this issue, saying "Although this doesn't lead to an SQL injection, it does provide a general MyBB SQL error.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

MyBB ‘keywords’参数多个SQL注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

MyBB（又名MyBulletinBoard）是MyBB团队开发的一套用PHP和MySQL开发的免费且基于Web的论坛软件。该软件具有简单易用、支持多国语言、可扩展等特点。 MyBB中的keywords参数中存在多个SQL注入漏洞，这些漏洞源于对用户提供的输入使用SQL查询之前没有充分的验证。攻击者利用这些漏洞控制应用程序，访问或修改数据，或利用底层数据库中潜在的漏洞。MyBB 1.6版本中存在漏洞，其他版本也可能受到影响。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2010-5096

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2010-5096

Please Login to view more intelligence information

http://dev.mybb.com/issues/1330x_refsource_MISC
http://www.osvdb.org/70013vdb-entryx_refsource_OSVDB
http://www.osvdb.org/70014vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/45565vdb-entryx_refsource_BID
http://www.openwall.com/lists/oss-security/2012/05/08/3mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2012/05/08/7mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2012/03/23/4mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2012/03/25/1mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2010-5096

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2010-5096

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2010-5096

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2010-5096

III. Intelligence Information for CVE-2010-5096

New Vulnerabilities

V. Comments for CVE-2010-5096

Leave a comment