CVE-2012-5909

Published: Nov 17, 2012
Updated: Apr 13, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2012-5909" target="_blank" rel="noopener"> CVE-2012-5909
Severity: High
Exploit:

SQL injection vulnerability in admin/modules/user/users.php in MyBB (aka MyBulletinBoard) 1.6.6 allows remote attackers to execute arbitrary SQL commands via the conditions[usergroup][] parameter in a search action to admin/index.php.