virus logo Intrusion Prevention

MyBB.Backdoor.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt to exploit a SQL Injection vulnerability in MyBB.
The vulnerability is a result of the application's failure to properly sanitize user input before using it in a user's request. As a result, a remote attacker can send a crafted query to execute a script on a vulnerable server.

affected-products-logoAffected Products

MyBB version 1.6.4

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 29623
Created Nov 03, 2011
Updated Nov 04, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS All
Affected App Other