+- Sinisterly (https://sinister.ly)
+-- Forum: Hacking (https://sinister.ly/Forum-Hacking)
+--- Forum: Website & Server Hacking (https://sinister.ly/Forum-Website-Server-Hacking)
+--- Thread: [SQLi]Popular MyBB Plugin Vulnerability [WORKING 1/3/14] (/Thread-SQLi-Popular-MyBB-Plugin-Vulnerability-WORKING-1-3-14)
[SQLi]Popular MyBB Plugin Vulnerability [WORKING 1/3/14] - Taken - 01-03-2014
I found this vulnerability while searching online. This MyBB plugin is used by tons of MyBB forums.
Link: http://cur.lv/61b1r
Feel free to redistribute my Coinurl link. Please don't report this to MyBB staff, instead wait few days so our blackhat friends can get their hands on some DBs or something.
Enjoy!
RE: [SQLi]Popular MyBB Plugin Vulnerability [WORKING 1/3/14] - BreShiE - 01-03-2014
Nice find, but most of the sites have patched this already. I guess this has been available privately for a while, the sites fixed it up and then they decided to release it.
RE: [SQLi]Popular MyBB Plugin Vulnerability [WORKING 1/3/14] - Cressi - 01-03-2014
Quite patched up already, but nice share, anyways.
RE: [SQLi]Popular MyBB Plugin Vulnerability [WORKING 1/3/14] - OversouL - 01-03-2014
It would be great if someone made a nice tutorial about this to bring back what the forum is about.
RE: [SQLi]Popular MyBB Plugin Vulnerability [WORKING 1/3/14] - Taken - 01-04-2014
Damn well hopefully some sites are vulnerable.
RE: [SQLi]Popular MyBB Plugin Vulnerability [WORKING 1/3/14] - madwad - 01-04-2014
very old..why release none 0day ..