KrCERT warned that SIR Soft released security updates for GnuBoard after SQL injection and file upload vulnerabilities were linked to suspicious PHP web shells such as auto_n.php. Administrators running affected or unsupported GnuBoard 4.x installations should inspect the listed server paths, remove malicious files, upgrade to GnuBoard 5.5.16 or later, and report confirmed intrusions through KrCERT channels.