MyBB Community Forums

MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.2 Series > MyBB 1.2 General Support > MYBB SERIOUS VULNERABILITY!!!
Full Version: MYBB SERIOUS VULNERABILITY!!!
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Pages: 1 2

gor

2004-12-30, 03:51 AM
Hi all,
I have MyBB installed (about two weeks ago, replacing phpBB) onto my server.
The version is MYBB RC 4 with security patch ( http://mybboard.com/community/showthread.php?tid=692 )
Yesterday I was hacked Sad Sad Sad Sad Sad Sad
My site index was changed so all users were redirected to one bad page...
I have checked Apache logs and found that hackers gained control using myBB software (PHP code injection into request URI - file showthread.php).

That vulnerability allows attacker to execute any PHP and OS shell commands, write/delete files etc.. I does not want to place an exploit here before admin will fix the vulnerability (to avoid some bad people from getting idea to hack for example, forum on this site).

I would like to give an advice to all myBB software users: SWITCH YOUR FORUM INTO MAINTENANCE MODE AND RENAME/DELETE FILE showthread.php UNTIL THIS VULNERABILITY WILL BE FIXED. Your forum will be unaccessible for attackers, but also for normal visitors. Choose your poison. Anyway, if you will decide to leave your forum online, making daily backups is a good idea. Also pay some attention to your log files...

TO ADMIN: CONTACT ME AS SOON AS POSSIBLE AND I WILL SEND YOU LINES FROM APACHE LOG FILE SO YOU CAN FIX THAT SECURITY HOLE.

My email is [email protected]

neroux

2004-12-30, 04:30 AM
gor Wrote:(PHP code injection into request URI - file viewtopic.php).
I guess you mean showthread.php, dont you? There is no file called viewtopic.php in MyBB.

gor

2004-12-30, 04:34 AM
Oops, sorry...
Yes I mean showthread.php file. Thanx.

Btw, I have discovered what was changed. They have changed my mySQL database Sad My site is an open source project... I can't understand that. Real hackers never do that.

P.S. IF someone knows following morons:
http://freehost13.websamba.com/MyFilesOn...ttackByCN/
please let me know. That will help find them. Thank you.

k776

2004-12-30, 04:53 AM
Make sure the email is from Chris Boulton. He is the admin here. Some people might pose as him, so be careful.

http://www.mybboard.com/community/member...file&uid=1

gor

2004-12-30, 05:23 AM
Sure. Thanx.

Chris Boulton

2004-12-30, 09:19 AM
As this is a serious matter i've sent you an email regarding this and am looking forward to a response.

If such an issue is found in MyBB an immediate security update will be released and all users should upgrade as soon as possible.

wildteen88

2004-12-30, 01:25 PM
Man there are some sad people on the internet! What is the big the deal about hacking site! Also how the hell do they use/do this injection crap?

Aaron

2004-12-30, 01:26 PM
im not convinced that it is possible through the MyBB software.

7rinsic

2004-12-30, 01:33 PM
Theres always a way AaronC Smile
Lets hope it doesnt turn into something like phpBB did :\\

The_Altered1

2004-12-30, 07:10 PM
There will always be ways to hack a board, what is important is the quick response to the issue once it is found. I am confident that the staff here will have the issue resolved in no time.

A good board = great
Good support = great
A good board with good support = priceless
Pages: 1 2
MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.2 Series > MyBB 1.2 General Support > MYBB SERIOUS VULNERABILITY!!!