MyBB Community Forums

MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.6 > 1.6 General Support > Strange member profiles
Full Version: Strange member profiles
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

BlackChaos

2013-01-04, 06:44 PM
A couple of users joined up this week and after registering, they started changing their profile fields to something like x', usergroup='4. Should I be even moderately concerned if already I'm upgraded to 1.6.9?

Just asking to make sure since I'm not really familiar with the latest 1.6.8 vulnerabilities. Better prudent than face peril.

Frank.Barry

2013-01-04, 06:47 PM
They are probably trying to SQL inject, although they are failing. usergroup=4 is the default admin group.

BlackChaos

2013-01-04, 06:48 PM
Thought as much. Seems like an obsolete method though.

Frank.Barry

2013-01-04, 06:51 PM
If it was me, I would probably give them the ban hammer.

BlackChaos

2013-01-04, 06:52 PM
(2013-01-04, 06:51 PM)Frank.Barry Wrote: [ -> ]If it was me, I would probably give them the ban hammer.

They'll probably just register again under false usernames, e-mails and IPs. But banning is always fun I suppose.

Frank.Barry

2013-01-04, 06:58 PM
(2013-01-04, 06:52 PM)BlackChaos Wrote: [ -> ]
(2013-01-04, 06:51 PM)Frank.Barry Wrote: [ -> ]If it was me, I would probably give them the ban hammer.

They'll probably just register again under false usernames, e-mails and IPs. But banning is always fun I suppose.

Yea true Big Grin
MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.6 > 1.6 General Support > Strange member profiles