2014-11-17, 11:13 AM
(This post was last modified: 2014-11-17, 02:11 PM by Diogo Parrinha.)
We've been following the reports here over the past 2 days in order to figure out the extent of the issue. I've just updated the blog post with more information but I'm going to post it here just in case people miss it.
Please check your ACP -> Tools & Maintenance -> Administrator Logs for suspicious activity!
Please check your ACP -> Tools & Maintenance -> Cache Manager -> 'update_check'. If it contains news data only then you're safe:
If it contains version code, and it is different from this:: (e.g. showing 1803 instead of 1802 and having <script> tags in the latest_version field)
Please check your ACP -> Tools & Maintenance -> Administrator Logs for suspicious activity!
Please check your ACP -> Tools & Maintenance -> Cache Manager -> 'update_check'. If it contains news data only then you're safe:
Array
(
[last_check] => 1416222660
[news] => Array
(
[0] => Array
(
[title] => GitHub Account Compromised
[description] => UPDATE: Updated the page in which you should check for suspicious activity. It should be the Admin Logs page, not the Database Backups. Hello, Yesterday, 14th of November, my (Pirata Nervo) GitHub account was compromised. By taking advantage of that, the attacker made a commit to our GH pages, more specifically one which is […]
[link] => http://feedproxy.google.com/~r/MyBBDevelopmentBlog/~3/9jWBtaXX3d8/
[author] => Pirata Nervo
[dateline] => 1416069961
)
[1] => Array
(
[title] => MyBB 1.8.2 Released – Security Release
[description] => MyBB 1.8.2 is now available from the MyBB website. It fixes 1 high risk vulnerability, 2 medium risk vulnerabilities and 2 low risk vulnerabilities. We recommend everyone upgrades to this release immediately. MyBB 1.6.15 is not affected by these vulnerabilities. What’s added/changed in this version? The vulnerabilities are: High Risk: A SQL injection vulnerability in […]
[link] => http://feedproxy.google.com/~r/MyBBDevelopmentBlog/~3/EkqazJvmZXc/
[author] => StefanT
[dateline] => 1415917805
)
[2] => Array
(
[title] => MyBB 1.8.1 & Merge System 1.8.1 Release
[description] => MyBB 1.8.1 – Maintenance Release MyBB 1.8.1 is now available from the MyBB website and is a maintenance release. What’s added/changed in this version? This release fixes 74 reported issues causing incorrect functionality of MyBB. Please be aware that to be able to provide easy to manage updates not all issues have been fixed in this version. Bugs […]
[link] => http://feedproxy.google.com/~r/MyBBDevelopmentBlog/~3/erxFg7H84tQ/
[author] => StefanT
[dateline] => 1414093168
)
)
)
If it contains version code, and it is different from this:: (e.g. showing 1803 instead of 1802 and having <script> tags in the latest_version field)
Array
(
[last_check] => 1416085808
[latest_version] => <span style="color: #C00;"><strong>1.8.2</strong> (1802)</span>
[latest_version_code] => 1802
)
then you need to reset the cache for it! (Rebuild Cache)
All my plugins are available for free at MyBB Extend and on my GitHub. MyBB-Plugins.com has been closed and none of my plugins are officially maintained or supported.