MyBB Community Forums

Just an FYI to all,

there is a script kiddy about trying to exploit MyBB via usernames.

His email address: [email protected] - if you have this user, ban him.

Here are the accounts he signed up as:

http://forums.wsdeluxe.com/member.php?ac...le&uid=105
http://forums.wsdeluxe.com/member.php?ac...le&uid=104
http://forums.wsdeluxe.com/member.php?ac...le&uid=103

His IP Addresses used:

85.129.182.104
213.181.177.166

His ISP seems to be based in italy

If you see this guy make sure you ban him.

I am contacting the operators of both IP's (found via RIPE) and will be reporting it to them.

Yep i guess that's what i have on my forum, with the name eval(die());//


regards

Is that the recent version of myBB you're using ... Did MyBB break when phpinfo() and eval(die()) was used ??

I found exploit for mybb 1.1.3 Im reporting to Chris.

It didnt break, i was able to stop him attempting to continue by blocking his local IP.

Im on 1.1.3

What's a FYI?

Latest attempt, probably by the same person, is: '.system(getenv(HTTP_J)).'
The latest IP is 62.75.146.221.

And MyBB didn't break. It didn't even blink.


This one traces to a server in Germany...

What would that script kiddy have damaged?

I dont think these things affect anything !! so dont worry.

regards

FYI = For your information.