[Slacker]

Ok so I am getting this error message and was wondering if it exposed a vulnerability or injection?

MyBB has experienced an internal SQL error and cannot continue.

SQL Error:
126 - Incorrect key file for table './philly_database/mybb_sessions.MYI'; try to repair it
Query:
REPLACE INTO mybb_sessions SET `uid`='14404',`sid`='3ad18756ee67857b0c417be7f3df4b2f',`time`='1359264909',`ip`='70.199.109.200',`location`='/index.php?',`useragent`='Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0',`location1`='0',`location2`='0',`nopermission`='0'

[i0xIllusi0n]

I don't know how MyBB security is, but there is a type of SQL Injection that is error based.

Just go in PhpMyAdmin and repair mybb_sessions

[Bannedshee]

That is most likely a vulnerability, and I would suggest removing the part that shows your IP address.

[w00t]

That isn't a vulnerability, the database is telling you that something went wrong.

[Marvie]

It should be common sense, seeing as though there is an IP in it.

[i0xIllusi0n]

It should be common sense, seeing as though there is an IP in it.

It displays your IP. Not his, not the sites. And just because something displays an IP doesn't mean it's vulnerable.

PHP Code:

<?php
echo $_SERVER['REMOTE_ADDR'];
?>

[Slacker]

'70.199.109.200 = Not my IP lol
Just curious. It is not my site, but would love to see it defaced. I would LOL so hard!

---

Well I know the site IP is 108.162..196.167, Do you know of any one that is good with MyBB?

[3SidedSquare]

MyBB is mostly secure, you're better off waiting around for a 0day to exploit the site before it updates, or tying to look for sites running an old version of MyBB.

[Slacker]

0 day?

please explain further, like I said I am a noob wanting to learn lol

[i0xIllusi0n]

0 day?

please explain further, like I said I am a noob wanting to learn lol

http://en.wikipedia.org/wiki/Zero-day_attack