CVE-2008-0787

Publication date

2008-02-15 00:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in inc/datahandlers/pm.php in MyBB before 1.2.12 allows remote authenticated users to execute arbitrary SQL commands via the options[disablesmilies] parameter to private.php.