SQL injection vulnerability in userbarsettings.php in the Userbar plugin 2.2 for MyBB Forum allows remote attackers to execute arbitrary SQL commands via the image2 parameter.Referenceshttp://www.securityfocus.com/bid/50049https://exchange.xforce.ibmcloud.com/vulnerabilities/70474http://www.exploit-db.com/exploits/17962
