MyBB Community Forums

MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.6 > 1.6 Security Management and Support > Blind SQL Injections
Full Version: Blind SQL Injections
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Pages: 1 2

s3_gunzel

2012-12-21, 08:26 PM
(2012-12-21, 07:27 PM)Master24 Wrote: [ -> ]Have you not read the blog?

all myBB forum owners are now reqired
to upgrade to MyBB V1.6.9.

Clearly your wires have been crossed. We aren't required to do a thing if we don't want to.

Master24

2012-12-21, 09:37 PM
(2012-12-21, 08:26 PM)Ben Cousins Wrote: [ -> ]
(2012-12-21, 07:27 PM)Master24 Wrote: [ -> ]Have you not read the blog?

all myBB forum owners are now reqired
to upgrade to MyBB V1.6.9.

Clearly your wires have been crossed. We aren't required to do a thing if we don't want to.

well if you want your forum hacked.

s3_gunzel

2012-12-21, 10:14 PM
(2012-12-21, 09:37 PM)Master24 Wrote: [ -> ]
(2012-12-21, 08:26 PM)Ben Cousins Wrote: [ -> ]
(2012-12-21, 07:27 PM)Master24 Wrote: [ -> ]Have you not read the blog?

all myBB forum owners are now reqired
to upgrade to MyBB V1.6.9.

Clearly your wires have been crossed. We aren't required to do a thing if we don't want to.

well if you want your forum hacked.

Ah, see, here's the thing, I use 128bit passwords, and I don't promote admins unless 1000% necessary. Mybb cant help you, or even I, as the forum owners' stupidity.

frostschutz

2012-12-21, 10:31 PM
All very nice, but with an SQL injection vulnerability, it doesn't really matter how secure your passwords are. You have to update, or at the very least patch the vulnerability itself, if you want to be safe.

Nathan Malcolm

2012-12-21, 10:32 PM
(2012-12-21, 10:14 PM)Ben Cousins Wrote: [ -> ]
(2012-12-21, 09:37 PM)Master24 Wrote: [ -> ]
(2012-12-21, 08:26 PM)Ben Cousins Wrote: [ -> ]
(2012-12-21, 07:27 PM)Master24 Wrote: [ -> ]Have you not read the blog?

all myBB forum owners are now reqired
to upgrade to MyBB V1.6.9.

Clearly your wires have been crossed. We aren't required to do a thing if we don't want to.

well if you want your forum hacked.

Ah, see, here's the thing, I use 128bit passwords, and I don't promote admins unless 1000% necessary. Mybb cant help you, or even I, as the forum owners' stupidity.

1.6.9 fixes an SQL injection vulnerability which affects all versions of 1.6 and 1.4, and only requires attachments to be enabled. You could be using military grade encryption but when someone can execute arbitrary SQL statements, that would be complete irrelevant.

frostschutz

2012-12-21, 10:33 PM
Oh the posts where did they all go to ~~~ insert end of the world joke here
Pages: 1 2
MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.6 > 1.6 Security Management and Support > Blind SQL Injections