CVE

Id
86251  
CVE No.
CVE-2015-8974  
Status
Candidate  
Description
SQL injection vulnerability in the Group Promotions module in the admin control panel in MyBB (aka MyBulletinBoard) before 1.6.18 and 1.8.x before 1.8.6 and MyBB Merge System before 1.8.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.  
Phase
Assigned (20161117)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
758174 86251 CVE-2015-8974 MLIST:[oss-security] 20161110 CVE request: MyBB multiple vulnerabilities  View
758175 86251 CVE-2015-8974 URL:http://www.openwall.com/lists/oss-security/2016/11/10/8  View
758176 86251 CVE-2015-8974 MLIST:[oss-security] 20161117 Re: CVE request: MyBB multiple vulnerabilities  View
758177 86251 CVE-2015-8974 URL:http://www.openwall.com/lists/oss-security/2016/11/18/1  View
758178 86251 CVE-2015-8974 CONFIRM:https://blog.mybb.com/2015/09/07/mybb-1-8-6-1-6-18-merge-system-1-8-6-release/  View
758179 86251 CVE-2015-8974 BID:94397  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
644 JVNDB-2016-001417 Microsoft .NET Framework の WinForms におけるプロセスメモリから重要な情報を取得される脆弱性 Microsoft .NET Framework の WinForms には、プロセスメモリから重要な情報を取得される脆弱性が存在します。 CVE-2016-0047 86251 5 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-001417.html  View