MyBB Community Forums

Full Version: Trying for an SQL Injection ?
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
I found a user in my forum with a username 1'or'1'='1. Think he is trying for a sql injection. Hope we are protected against these people...

There are no known major exploits within MyBB. We would not release a version of MyBB if it had security vulnerabilities; and if one is found that's seen as critical, we aim to patch it within 24 hours.

The SQA team are given the role of bug testing and trying to manipulate the code to exploit it before a release is made. Developers also try the same.

The software does get tested for these types of things.

Hi Conor

Thank you very much for your reply... and for keeping us safe from those prying people

I know mere words of appreciation are not enough ... so a donation follows

love u guys...


Some problem with your paypal account ?

Getting an error message....

"This recipient is currently unable to receive money."

Please have a look and I will come back soon...
I'm afraid we've been having issues with PayPal for awhile now that we've been unable to resolve. Thanks for your attempt at donating though.