Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2025/08/13 8:35 p.m.6 views

CVE-2011-10018 myBB 1.6.4 Backdoor Arbitrary Command Execution

myBB version 1.6.4 was distributed with an unauthorized backdoor embedded in the source code. The backdoor allowed remote attackers to execute arbitrary PHP code by injecting payloads into a specially crafted collapsed cookie. This vulnerability was introduced during packaging and was not part of...

10CVSS8.2AI score0.0186EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/08/13 8:35 p.m.12 views

CVE-2011-10018 myBB 1.6.4 Backdoor Arbitrary Command Execution

myBB version 1.6.4 was distributed with an unauthorized backdoor embedded in the source code. The backdoor allowed remote attackers to execute arbitrary PHP code by injecting payloads into a specially crafted collapsed cookie. This vulnerability was introduced during packaging and was not part of...

10CVSS0.0186EPSS
Exploits1References5
CVE
CVE
added 2025/08/13 8:35 p.m.32 views

CVE-2011-10018

CVE-2011-10018 affects myBB 1.6.4, where an unauthorized backdoor was embedded in the source during packaging, enabling remote PHP code execution via a crafted collapsed cookie with no authentication. Exploitation leads to full compromise of the web server under the web app’s context. No fix vers...

10CVSS8.2AI score0.0186EPSS
Exploits1References5Affected Software1
Dsquare
Dsquare
added 2012/01/26 12:0 a.m.30 views

MyBB 1.6.4 RCE

MyBB 1.6.4 unauthorized backdoored command exec Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

0.9AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2011/10/14 12:0 a.m.39 views

MyBB 1.6.4 Backdoor PHP Remote Code Execution

A version of MyBB 1.6.4 with a backdoor was detected on the remote host. The MyBB source code repository was compromised, and backdoor code was added to allow arbitrary PHP execution. The backdoor is present in MyBB 1.6.4 downloaded on or before October 6, 2011. A remote, unauthenticated attacker...

6.2AI score
Exploits0References2
Rows per page
Query Builder