Warning...Script Kiddy about
#1
Just an FYI to all,

there is a script kiddy about trying to exploit MyBB via usernames.

His email address: [email protected] - if you have this user, ban him.

Here are the accounts he signed up as:

http://forums.wsdeluxe.com/member.php?ac...le&uid=105
http://forums.wsdeluxe.com/member.php?ac...le&uid=104
http://forums.wsdeluxe.com/member.php?ac...le&uid=103

His IP Addresses used:

85.129.182.104
213.181.177.166

His ISP seems to be based in italy

If you see this guy make sure you ban him.

I am contacting the operators of both IP's (found via RIPE) and will be reporting it to them.
#2
Yep i guess that's what i have on my forum, with the name eval(die());//


regards
#3
Is that the recent version of myBB you're using ... Did MyBB break when phpinfo() and eval(die()) was used ??
#4
I found exploit for mybb 1.1.3 Im reporting to Chris.
#5
It didnt break, i was able to stop him attempting to continue by blocking his local IP.

Im on 1.1.3
#6
What's a FYI? Toungue
[Image: destroyerjf8.jpg]

Give us your feedback about MyBB in this thread and become listed on the MyBB website.
#7
Latest attempt, probably by the same person, is: '.system(getenv(HTTP_J)).'
The latest IP is 62.75.146.221.

And MyBB didn't break. It didn't even blink. Big Grin


This one traces to a server in Germany...
¡Mi ombligo esta en llamas!
#8
What would that script kiddy have damaged? Smile
[Image: destroyerjf8.jpg]

Give us your feedback about MyBB in this thread and become listed on the MyBB website.
#9
I dont think these things affect anything !! so dont worry.

regards
#10
FYI = For your information.


Forum Jump:


Users browsing this thread: 1 Guest(s)