Security Advisory

CVE-2005-2888

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-09-14 04:00:00

Last updated 2024-08-07 22:53:29

Assigner mitre

State PUBLISHED

Description

Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) Preview Release 2 allow remote attackers to execute arbitrary SQL commands via the (1) fid parameter to misc.php or (2) Content-Disposition field in the HTTP header to newreply.php.

← Browse all CVEs View on cve.org ↗