CVE-2012-2325

Name of the Vulnerable Software and Affected Versions MyBB versions prior to 1.6.7

Description The issue allows remote administrators to execute arbitrary SQL commands. This is due to a SQL injection vulnerability in the User Inline Moderation feature in the Admin Control Panel.

Recommendations For versions prior to 1.6.7, update to version 1.6.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the Admin Control Panel to minimize the risk of exploitation.