Critical severity9.8NVD Advisory· Published Jun 13, 2023· Updated Jun 17, 2026
CVE-2023-34249
CVE-2023-34249
Description
benjjvi/PyBB is an open source bulletin board. Prior to commit dcaeccd37198ecd3e41ea766d1099354b60d69c2, benjjvi/PyBB is vulnerable to SQL Injection. This vulnerability has been fixed as of commit dcaeccd37198ecd3e41ea766d1099354b60d69c2. As a workaround, a user may be able to update the software manually to avoid this problem by sanitizing user queries to BulletinDatabaseModule.py.
Affected products
2Patches
Vulnerability mechanics
References
2- github.com/benjjvi/PyBB/commit/dcaeccd37198ecd3e41ea766d1099354b60d69c2nvdPatch
- github.com/benjjvi/PyBB/security/advisories/GHSA-5qrx-fgxq-95ggnvdMitigationPatchThird Party Advisory
News mentions
0No linked articles in our index yet.