Classic phpBB vulnerability impacts phpBB-based forums

Published: 2007-02-02. Last Updated: 2007-02-02 20:10:07 UTC
by Kevin Liston (Version: 1)
0 comment(s)
It seems fairly obvious but the classic phpbb_root_path vulnerability is present in products such as: Omegaboard, Cerulean Portal System, phpBB Tweaked, Hailboards, EclipseBB and Xero Portal.  All are affected by the vulnerability exposed by having register_globals set to "on."  It appears that it is being regularly exploited as well to deface systems.
www.heise-security.co.uk/news/84732
Thanks for the lead Juergen!
Keywords:
0 comment(s)

Comments


Diary Archives