11-07-2016, 03:14 PMMercy Wrote: Well I mostly use Ransack Agent or whatever it is to scan files. In Garry's Mod (Lua) You mostly search for Run.str or Run.String or something like that so I was asking if there's any specific code which actually lets them to do something bad.
There isn't a set of code that can make a website vulnerable. Well there are the common ones, but I doubt MyBB have those lying around anywhere. The vulnerabilities you see for MyBB are just simple code alternatives or shortcuts. So to make the code more efficient or something, devs will sometimes use alternative methods or new methods. This sometimes leaves the software being vulnerable. MyBB is opensource, so a lot of Vulnerabilities are found since hackers can take a look at the code. But most hackers dont' site around going through thousand lines of code. White hats or security researchers do, and when they find something they will report it and MyBB would fix it. My best reccomendation is to keep up to date on all the software, MyBB, web server, server OS updates, all of it. I would also hide your admin panel, you can Google on how to do that there are tutorials out there.
Hiding admin panel seems pretty good idea. I loved it! I'm going to search how to do it man. Thank you.