MyBB Documentation

Version: 1.8.3

MyBB 1.8.3

Release Date

MyBB 1.8.3 was released on 20 November 2014.

Announcement Summary

MyBB 1.8.3 is a security release and fixes 1 high risk vulnerability, 2 medium risk vulnerabilities and 3 low risk vulnerabilities.

Fixed Issues

  • Vulnerabilities fixed:
    • High Risk: A SQL injection vulnerability in theme selection (reported by StefanT)
    • Medium Risk: A XSS vulnerability in calender.php (reported by -Acid)
    • Medium Risk: A XSS vulnerability in MyCode editor (reported by My-BB.Ir)
    • Low Risk: A XSS vulnerability related to post icons (reported by Destroy666)
    • Low Risk: unserialize may call PHP magic methods (reported by chtg)
    • Low Risk: PHP setting request_order can break register globals handling (reported by chtg)
  • Bugs fixed:

Changed Files

The following files have changed since MyBB 1.8.2.

  • admin
    • modules
      • config
        • plugins.php
        • settings.php
      • home
        • credits.php
        • index.php
      • style
        • themes.php
      • tools
        • file_verification.php
    • index.php
  • inc
    • modules
      • versioncheck.php
    • class_core.php
    • class_parser.php
    • functions.php
  • jscripts
    • bbcodes_sceditor.js
  • calendar.php
  • forumdisplay.php
  • global.php
  • portal.php
  • private.php
  • search.php
  • showthread.php
  • usercp.php
  • xmlhttp.php

Language Changes

There are no changes to language files.

Template Changes

There are no changes to templates.

Edit this page on GitHub