CVE-2006-0218 — HIGH (10.0)

Q: How severe is CVE-2006-0218?

CVE-2006-0218 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2006-0218?

Check the references section above for vendor advisories and patch information. Affected products include: Mybb Mybb.

Vulnerability Description

Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0.2 have unspecified impact and attack vectors, related to (1) admin/moderate.php, (2) admin/themes.php, (3) inc/functions.php, (4) inc/functions_upload.php, (5) printthread.php, and (6) usercp.php, and probably related to SQL injection. NOTE: it is likely that this issue subsumes CVE-2005-4602 and CVE-2005-4603. However, since the vendor advisory is vague and additional files are mentioned, is is likely that this contains at least one distinct vulnerability from CVE-2005-4602 and CVE-2005-4603.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Mybb	Mybb	<= 1.01

References

http://community.mybboard.net/showthread.php?tid=5852PatchVendor Advisory
http://community.mybboard.net/showthread.php?tid=5852PatchVendor Advisory

FAQ

What is CVE-2006-0218?

CVE-2006-0218 is a vulnerability with a CVSS score of 10.0 (HIGH). Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0.2 have unspecified impact and attack vectors, related to (1) admin/moderate.php, (2) admin/themes.php, (3) inc/functions.php, ...

How severe is CVE-2006-0218?

CVE-2006-0218 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-0218?

Check the references section above for vendor advisories and patch information. Affected products include: Mybb Mybb.