CVE-2022-43709

Publication date

2022-11-21 00:00:00

Family

mitre

State

PUBLISHED

Description

MyBB 1.8.31 has a SQL injection vulnerability in the Admin CPs Users module allows remote authenticated users to modify the query string via direct user input or stored search filter settings.