First published: Mon Mar 15 2021(Updated: )
SQL Injection vulnerability in MyBB before 1.8.26 via User Groups. (issue 3 of 3).
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mybb Mybb | <1.8.26 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-27948 is a SQL Injection vulnerability in MyBB before version 1.8.26 via User Groups.
CVE-2021-27948 has a severity value of 7.2 (high).
CVE-2021-27948 allows attackers to perform SQL Injection attacks on MyBB versions before 1.8.26 via User Groups.
To fix CVE-2021-27948, you should update MyBB to version 1.8.26 or later.
You can find more information about CVE-2021-27948 on the GitHub Security Advisory page: <a href='https://github.com/mybb/mybb/security/advisories/GHSA-3p9w-2q65-r6g2'>GitHub Security Advisory</a>.