MyBB 1.8.5 IS HERE!

The changes: http://blog.mybb.com/2015/05/27/mybb-1-8...5-release/


--

Vulnerabilities:

Medium Risk: Reset password code check could be circumvented in member.php reported by solati.sadegh
Medium Risk: Sender email could be spoofed when sending an email to a user in member.php reported by onlinedevelopers
Medium Risk: Permissions not checked for post search with old sid in search.php reported by pedder55655
Medium Risk: XSS in quick edit function of xmlhttp.php reported by TiberiusG
Low Risk: CSRF in ACP mass mail cancellation reported by Destroy666
Low Risk: Use of the U+200E Unicode character to create ?duplicate username reported by mahdy2021

--


Download: http://www.mybb.com/download/

:yus:

Sweet! Thanks, was wondering when it would be released. :yus:

Medium Risk: Reset password code check could be circumvented in member.php reported by solati.sadegh

For real? Could we just try to reset password for someone and then catch his password and "hack/crack" his acount?

That's awsome bro! Thanks!

I don't like mybb past 1.8.3 honestly.

I'd rather fix exploits manually atm.

28-05-2015, 07:08 PM

Hug Wrote: I don't like mybb past 1.8.3 honestly.

I'd rather fix exploits manually atm.

Why, What's changed in MyBB past 1.8.3

28-05-2015, 07:10 PM

Oxygen Wrote:

28-05-2015, 07:08 PM

Hug Wrote: I don't like mybb past 1.8.3 honestly.

I'd rather fix exploits manually atm.

Why, What's changed in MyBB past 1.8.3

Nothing. I just don't like anything above it, no specific reason why.

<br/>

MyBB is crap now a days with these silly updates its annoying like every week or every month theres atleast a new update happening then users have to upgrade -_-

Thanks for sharing this release! I did not even know about the new update. Will this release affect themes?

01-06-2015, 08:08 AM

Robert Wrote: Thanks for sharing this release! I did not even know about the new update. Will this release affect themes?

Nope