News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

NeoSmart.net Forum:
New 0-day Vulnerability Found in phpBB
May 19, 2006 @ 06:45:59

According to this forum post on the NeoSmart message boards, there's a new "0-day vulnerability" that they've discovered in the phpBB message board system.

Our research team has discovered a new (aka 0-day) vulnerability in phpBB, that affects all existing versions (including the Olympus CVS as of May 18th, 2006).

This phpBB security vulnerability has been scaled at a threat level of 6/10; allowing normal members access to privileged and restricted-access content on a phpBB forum. The bug lies in the email notification system and can be used to track comments made on any hidden posts that were once user accessible.

Since this bug has just broken today, there's no response from phpBB as of yet with a patch, but expect it soon if this issue is as important as the post mentions.

0 comments voice your opinion now!
vulnerability 0-day phpbb email notification system track comments vulnerability 0-day phpbb email notification system track comments


blog comments powered by Disqus

Similar Posts

NETTUTS.com: How to Code a Signup Form with Email Confirmation

NETTUTS.com: Sanitize and Validate Data with PHP Filters

Mike Dalisay: Salt, Hash and Store Passwords Securely with Phpass

Stoyan Stefanov's Blog: phpBB front-end optimization - 1 hour workshop

DevShed: Working with the Email Class in Code Igniter


Community Events





Don't see your event here?
Let us know!


introduction developer library list interview code application community api podcast framework release wordpress configure project language series laravel bugfix threedevsandamaybe

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework