2012-07-20, 01:44 AM
first of all i'm not trying to change mybb reputation or claim that you got some vulnerability's in your script i'm just trying to be safe and couple days ago i shut down my forum because i found allot of vulnerability's i checked my plugins and remove 2 of them , mobile and social then half of the vulnerability's is gone , now i got about 7 sqli,cookie injection vulnerability's,
i was wondering if mybb security can explain this vulnerability's maybe help me fix them
here is a photo of scanning my forum before removing the plugins
http://www3.picturepush.com/photo/a/8768...768881.png
and after removing the plugins
http://www5.picturepush.com/photo/a/8772...772538.png
i found this 2 links on the web maybe you can explain:
http://www.securityfocus.com/bid/27322/exploit
http://www.securityfocus.com/bid/13827/exploit
note:
i'm not trying to fight , just want to stay safe mates
any help will be appreciated
regards
illusion
i was wondering if mybb security can explain this vulnerability's maybe help me fix them
here is a photo of scanning my forum before removing the plugins
http://www3.picturepush.com/photo/a/8768...768881.png
and after removing the plugins
http://www5.picturepush.com/photo/a/8772...772538.png
i found this 2 links on the web maybe you can explain:
http://www.securityfocus.com/bid/27322/exploit
http://www.securityfocus.com/bid/13827/exploit
note:
i'm not trying to fight , just want to stay safe mates
any help will be appreciated
regards
illusion