Back to search
CVE-2013-6936
Published: Dec 4, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
Multiple SQL injection vulnerabilities in ajaxfs.php in the Ajax forum stat (Ajaxfs) Plugin 2.0 for MyBB (aka MyBulletinBoard) allow remote attackers to execute arbitrary SQL commands via the (1) tooltip or (2) usertooltip parameter.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
100030
vdb-entry
x_refsource_OSVDB
29797
exploit
x_refsource_EXPLOIT-DB
http://www.iedb.ir/exploits-889.html
x_refsource_MISC
mybb-ajaxfs-sql-injection(89084)
vdb-entry
x_refsource_XF
20131120 Mybb Ajaxfs Plugin Sql Injection vulnerability
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now