VYPR
Unrated severityNVD Advisory· Published Mar 19, 2006· Updated Jun 16, 2026

CVE-2006-1282

CVE-2006-1282

Description

CRLF injection vulnerability in inc/function.php in MyBulletinBoard (MyBB) 1.04 allows remote attackers to conduct cross-site scripting (XSS), poison caches, or hijack pages via CRLF (%0A%0D) sequences in the Referrer HTTP header field, possibly when redirecting to other web pages.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.1:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mybulletinboard:mybulletinboard:1.0_final:*:*:*:*:*:*:*
    • cpe:2.3:a:mybulletinboard:mybulletinboard:1.0_pr2:*:*:*:*:*:*:*
    • cpe:2.3:a:mybulletinboard:mybulletinboard:rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:mybulletinboard:mybulletinboard:rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:mybulletinboard:mybulletinboard:rc3:*:*:*:*:*:*:*
    • cpe:2.3:a:mybulletinboard:mybulletinboard:rc4:*:*:*:*:*:*:*
  • MyBB/Mybbllm-fuzzy
    Range: = 1.04

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.