Current time: 08-18-2017, 15:32 PM
MyBB 1.6.9 Release (Security Release)
12-15-2012, 16:43 PM
Post: #1
MyBB 1.6.9 Release (Security Release)
Incase some of you didn't know, MyBB 1.6.9 has just been released.
You will see information about it if you check for updates on your admin panel.

Here is a post from MyBB:

MyBB 1.6.9 Security Release

MyBB 1.6.9 is now available from the MyBB website and is a security release for the 1.6 series.

What’s added/changed in this version?
It has come to our attention that there is an SQL injection vulnerability in all versions of MyBB, including MyBB 1.6.8. We advise all MyBB forum owners to upgrade their forum as soon as possible.

With thanks to frostschutz and StefanT for finding and reporting these issues.

Vulnerabilities fixed:

High Risk: An SQL vulnerability when editing a post
Medium Risk: CAPTCHA systems non effective, providing possible brute-force access
Bugs fixed:

An issue with the editor not working in Firefox 16 and above
We apologise for any inconvenience.

Upgrading from 1.6.8 and Other Versions
Before performing any upgrade please remember to backup your forum’s files and database and store them safely. If you have edited core files, including language files, please make sure you make a changelog for these changes so you can make them again once the upgrade is complete.

To upgrade, follow the Upgrading process. The upgrade script is required. There are changes to 1 language file (messages.lang.php). There are changes to 3 templates (portal_welcome_guesttext, loginbox & codebuttons).

If you’re using MyBB 1.6.8

Download and use the Changed Files Package
Follow the upgrading instructions
If you’re using MyBB 1.6.7 or below

Download and use the full 1.6.9 Release Package
Follow the upgrading instructions
Reporting MyBB Security Vulnerabilities
If you think you’ve found a vulnerability in MyBB, we advise you not to publicly post it on these forums or publicly release information about it elsewhere until we’ve had time to prepare and release a patch.

As always, you can send through security related messages on the MyBB website from the Contact Us page or in our Private Inquiries forum – where you can start a new thread that only you and the MyBB Team can see.

Thank you,

MyBB Team

My Forums
The contents of this section are hidden from your usergroup.
Quote

Namecheap.com

12-15-2012, 16:53 PM
Post: #2
RE: MyBB 1.6.9 Release (Security Release)
Thanks for that Wink

The contents of this section are hidden from your usergroup.

$10 Off any hostgator package - Coupon Code: The contents of this section are hidden from your usergroup.
25% Off any hostgator package - Coupon Code: The contents of this section are hidden from your usergroup.
$25 Off all reseller packages - Coupon Code: The contents of this section are hidden from your usergroup.
Quote

Namecheap.com

12-15-2012, 19:54 PM
Post: #3
RE: MyBB 1.6.9 Release (Security Release)
Updated already and seems most of the plugins from here are still working correctly. The ones I use. I don't think it really changed much but just fix the 'edit' posts vulnerability.
Quote

Namecheap.com

01-05-2013, 01:52 AM
Post: #4
RE: MyBB 1.6.9 Release (Security Release)
I prefer to use mybb 1.6.7 than 1.6.8 because mybbgm mobile plugin doesn't work. I hope this new update will work now.
Quote

Namecheap.com



Possibly Related Threads...
Thread: Author Replies: Views: Last Post
  MyBB Extras Chrome Browser Extension Echo 0 2,269 08-17-2014 20:12 PM
Last Post: Echo
  [Question] Current MyBB Extras Theme Gabby 2 2,098 08-03-2014 16:49 PM
Last Post: Gabby
  [Video] MyBB Windows 8 Meto Theme Echo 2 7,606 07-29-2013 12:15 PM
Last Post: Bala
  MyBB Extras iPhone App Echo 29 11,344 05-06-2013 17:15 PM
Last Post: NekoNeji
  MyBB Alert System Switchbladed 5 3,573 01-05-2013 02:05 AM
Last Post: jeffdaryl


User(s) browsing this thread: 1 Guest(s)