Impact
The number of votes in thread poll options can be modified by authors and saved without proper validation. This data may be fetched and re-inserted into the database during the Copy Thread operation without being properly sanitized, resulting in an SQL injection vulnerability.
The impact may be reduced when:
- creating and editing thread polls is disabled or limited for forum users.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Patches
MyBB 1.8.26 resolves this issue with the following changes:
References
For more information
Go to mybb.com/security to report possible security concerns or to learn more about security research at MyBB.
Contact
The security team can be reached at security@mybb.com.
Impact
The number of votes in thread poll options can be modified by authors and saved without proper validation. This data may be fetched and re-inserted into the database during the Copy Thread operation without being properly sanitized, resulting in an SQL injection vulnerability.
The impact may be reduced when:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Patches
MyBB 1.8.26 resolves this issue with the following changes:
.patch: https://github.com/mybb/mybb/commit/aa415f08bce01f95a8319b707bb18eb67833f4c1.patchReferences
For more information
Go to mybb.com/security to report possible security concerns or to learn more about security research at MyBB.
Contact
The security team can be reached at security@mybb.com.