CNNVD-202508-1459 Information
CNNVD ID
CNNVD-202508-1459
Related CVE
- CNNVD Published: 2025-08-13
Description (Chinese)
MyBB(MyBulletinBoard)是MyBB团队的一套用PHP和MySQL开发的免费且基于Web的论坛软件。该软件具有简单易用、支持多国语言、可扩展等特点。 MyBB 1.6.4版本存在安全漏洞,该漏洞源于源代码中嵌入后门,可能导致远程代码执行。
Description (English)
MyBB (MyBulletinBoard) is a free Web-based forum software developed by MyBB teams using PHP and MySQL. The software is simple, easy to use, multi-country language support, and scalable. There is a security loophole in version 1.6.4 of MyBB, which stems from the embedded back door in the source code, which may lead to remote code implementation.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
MyBB
Published
2025-08-13
Last Modified
2026-02-24
References
https://blog.mybb.com/2011/10/06/1-6-4-security-vulnerabilit/ https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/mybb_backdoor.rb http://secunia.com/advisories/46300/ https://web.archive.org/web/20111015224948/ https://www.exploit-db.com/exploits/17949 https://www.vulncheck.com/advisories/mybb-backdoor-arbitrary-command-execution