Skip to content

Poll vote count SQL injection

Moderate
dvz published GHSA-23m9-w75q-ph4p Mar 10, 2021

Package

MyBB

Affected versions

< 1.8.26

Patched versions

1.8.26

Description

Impact

The number of votes in thread poll options can be modified by authors and saved without proper validation. This data may be fetched and re-inserted into the database during the Copy Thread operation without being properly sanitized, resulting in an SQL injection vulnerability.

The impact may be reduced when:

  • creating and editing thread polls is disabled or limited for forum users.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Patches

MyBB 1.8.26 resolves this issue with the following changes:

References

For more information

Go to mybb.com/security to report possible security concerns or to learn more about security research at MyBB.

Contact

The security team can be reached at security@mybb.com.

Severity

Moderate

CVE ID

CVE-2021-27946

Weaknesses