5 matches found
CVE-2011-10018 myBB 1.6.4 Backdoor Arbitrary Command Execution
myBB version 1.6.4 was distributed with an unauthorized backdoor embedded in the source code. The backdoor allowed remote attackers to execute arbitrary PHP code by injecting payloads into a specially crafted collapsed cookie. This vulnerability was introduced during packaging and was not part of...
CVE-2011-10018 myBB 1.6.4 Backdoor Arbitrary Command Execution
myBB version 1.6.4 was distributed with an unauthorized backdoor embedded in the source code. The backdoor allowed remote attackers to execute arbitrary PHP code by injecting payloads into a specially crafted collapsed cookie. This vulnerability was introduced during packaging and was not part of...
CVE-2011-10018
CVE-2011-10018 affects myBB 1.6.4, where an unauthorized backdoor was embedded in the source during packaging, enabling remote PHP code execution via a crafted collapsed cookie with no authentication. Exploitation leads to full compromise of the web server under the web app’s context. No fix vers...
MyBB 1.6.4 RCE
MyBB 1.6.4 unauthorized backdoored command exec Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
MyBB 1.6.4 Backdoor PHP Remote Code Execution
A version of MyBB 1.6.4 with a backdoor was detected on the remote host. The MyBB source code repository was compromised, and backdoor code was added to allow arbitrary PHP execution. The backdoor is present in MyBB 1.6.4 downloaded on or before October 6, 2011. A remote, unauthenticated attacker...