how to stop mybb script from hacking by hacker from shell script?
it becomes easy for hacker to hack mybb script from shell script.
they can hack site while uploading shell script via post and they can hack it.
help please
Why has it become 'easier'...?? There are no known vulnerabilities in 1.4.9 so I'm not sure how it can be easier... you are on 1.4.9, yeah??
Well that's probably why you're getting hacked then. 1.4.9 fixed a high risk vulnerability, and was released 6 weeks ago. Try and keep more up to date with releases, there's no point in us providing security fixes if people aren't going to use them and then get hacked.
can u tell me please which new features i should add in my old verson from new 1.4.9 so that it get protected from hacking by shell script
thanks matt brother
do i have to do anything after uploading those files?
No, for this upgrade you only need to upload the changed files.
ok thank you
if i upgrade this files then does it stops shell script to get uploaded from any uploader of mybb script like posts,personal avatar or pic etc
This patches a known issue in MyBB, if things are still getting uploaded after this patch, it may be unrelated to MyBB or due to a non-MyBB file still on your server.