Vulnerabilities in MyBB Profile Blogs
Vulnerability: Multiple vulnerabilities in MyBB Profile Blogs
Danger: Low
Number of vulnerabilities: 2
Vector of operation: Remote
Impact: Cross Site Scripting
Unauthorized manipulation of data
Affected Products: Profile Blogs 1.x (plugin for MyBB)
Affected versions: MyBB Profile Blogs 1.2, maybe earlier.
Description:
The vulnerability allows a remote user to execute arbitrary SQL commands in the application database.
1. The vulnerability is caused due to insufficient input validation in the parameter ‘subject’ in the script member.php (when the parameter ‘action’ is equal to ‘profile’, ‘uid’ is set.) This can be exploited to execute arbitrary HTML and script code in a user’s browser session in context of an affected site.
2. The vulnerability is caused due to insufficient input validation in the parameter ‘edit’ in the script member.php (when the parameter ‘action’ is equal to ‘profile’, and ‘uid’ and ‘blogpage’ set). This can be exploited to execute arbitrary SQL commands in the application database.
Manufacturer URL: http://mods.mybb.com/view/profile-blogs
Solution: The way to eliminate the vulnerability does not exist at present.
Links:
