Jump to content

Sign in to follow this

Followers 6

phpBB avatar_path PHP Code Execution Vulnerability

By ne0, December 31, 2006 in Security issues & Exploits

Recommended Posts

ne0 0

Report post

Posted December 31, 2006

The phpBB application is prone to an arbitrary PHP code-execution vulnerability.
If successful, attackers can execute script code with the privileges of the webserver process.

Vulnerable: phpBB phpBB 2.0.21
phpBB phpBB 2.0.20
phpBB phpBB 2.0.18

Not Vulnerable:
phpBB phpBB 2.0.22

So , upgrade to phpBB phpBB 2.0.22 .

Share this post

Link to post

Share on other sites

toby 0

Report post

Posted January 1, 2007

I think I know the site that will explain it, but thanks for pointing it out in such a common program .

Share this post

Link to post

Share on other sites

iGuest 3

Report post

Posted January 31, 2007

are you sure? phpbb has never let me down and the avatar path seems secure on .18 to me.

Share this post

Link to post

Share on other sites

pyost 0

Report post

Posted January 31, 2007

Obviously, no one has tried to hack your board. If it were the oposite, your message would already be down - phpBB is well-known for its security issues.

Share this post

Link to post

Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Sign in to follow this

Followers 6

Go To Topic Listing

×

Browse
- Back
- Browse
- Forums
- Guidelines
- Staff
- Online Users
- Leaderboard
Activity
- Back
- Activity
- All Activity
- Search
Leaderboard

×

Create New...

Important Information

Terms of Use | Privacy Policy | Guidelines | We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.

I accept