CVE-2008-3070

EPSS 0.23% · P45 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-3070

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Unspecified vulnerability in inc/datahandler/user.php in MyBB before 1.2.13 has unknown impact and attack vectors related to the $user['language'] variable, probably related to SQL injection.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

mybb inc/datahandler/user.php SQL注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

MyBB是国际上非常优秀的免费论坛软件，最大的特色是简单但是功能却出奇的强。 MyBB 1.2.13之前版本的inc/datahandler/user.php中存在未明漏洞，该漏洞具有未明影响和与$user['language'] 变量甚至SQL注入有关的攻击向量。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-3070

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-3070

Please Login to view more intelligence information

http://community.mybboard.net/attachment.php?aid=9272x_refsource_CONFIRM
http://community.mybboard.net/showthread.php?tid=31666x_refsource_CONFIRM
http://secunia.com/advisories/31013third-party-advisoryx_refsource_SECUNIA
https://nvd.nist.gov/vuln/detail/CVE-2008-3070

Same Patch Batch · n/a · 2008-07-08 · 15 CVEs total

CVE-2008-1447		ISC BIND 安全特征问题漏洞
CVE-2008-0085		Microsoft SQL Server信息泄露及缓冲区溢出漏洞(MS08-040)
CVE-2008-0086		Microsoft SQL Server信息泄露及缓冲区溢出漏洞(MS08-040)
CVE-2008-0106		Microsoft SQL Server信息泄露及缓冲区溢出漏洞(MS08-040)
CVE-2008-0107		Microsoft SQL Server磁盘数据结构整数溢出漏洞(MS08-040)
CVE-2008-1435		Windows资源管理器保存搜索文件远程代码执行漏洞(MS08-038)
CVE-2008-1454		Microsoft Windows DNS服务器缓存中毒漏洞(MS08-037)
CVE-2008-2247		Outlook Web Access for Exchange Server邮件字段跨站脚本漏洞
CVE-2008-2248		Outlook Web Access for Exchange Server邮件字段跨站脚本漏洞(MS08-039)
CVE-2008-2809		Mozilla Firefox 证书处理欺骗漏洞
CVE-2008-3069		MyBB 多文件跨站攻击漏洞
CVE-2008-3071		mybb 'class_language'路径遍历漏洞
CVE-2008-3072		Simple Machine Forum Random Generator Seeding 安全漏洞
CVE-2008-3073		Simple Machine Forum html-tag XSS跨站漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-3070

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-3070

I. Basic Information for CVE-2008-3070

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-3070

III. Intelligence Information for CVE-2008-3070

Same Patch Batch · n/a · 2008-07-08 · 15 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-3070

Leave a comment