14 DAY TRIAL // Rumors of some exploits that rely on MyBB 1.6.5 vulnerabilities have been circulating these days, but the open source forum script’s developers came forward to deny these claims, appointing the real culprits which expose bulletin boards to hacking operations. Simple Tag Cloud Plugin (Tags), created by Watt, and FBConnect, which isn’t available on the Mods site, are the plugins affected by security weaknesses.
While the first was unapproved (and will remain that way until the issue is fixed) to make sure no other users install it, the second plugin is patched up and an update has been made available on the author’s website or on the community forum.
“We strongly advise you to remove the first plugin entirely from your forum and either remove the second one or install the fixed version. We also recommend you to do the necessary searching for any data that may have been compromised,” reads an advisory on the MyBB development blog.