Government Security
Network Security Resources

Jump to content

Photo

Phpbb3 Exploits

- - - - - exploit php patch
  • Please log in to reply
6 replies to this topic

#1 LaHrrS LoVeLL

LaHrrS LoVeLL

    Private First Class

  • Members
  • 42 posts

Posted 29 June 2007 - 03:20 AM

A lot of phpBB3 forums have been hacked again by Turkish script kiddies making their rounds. Trying to prove their point about how we shouldn't mess with them. All phpBB3 admins, be warned. Make sure you upgrade as soon as the patch is released. Does anyone have more information regarding this matter?

#2 Se7eN

Se7eN

    Sergeant

  • Members
  • 227 posts

Posted 29 June 2007 - 07:52 AM

Visit : hxxp://www.milw0rm.com/search.php
And search for "phpbb", you will find alot of addons for phpBB wich are vulnerable to all kinds of flaws like XSS, SQL injection and Remote File Inclusion.

#3 Glyph

Glyph

    General of the Army

  • GSO Management
  • 1,603 posts

Posted 29 June 2007 - 09:52 AM

you can also do your research on vulnerabilities at the following.

hxxp://nvd.nist.gov/nvd.cfm?advancedsearch

Same as above.. just put in your search parameters and do like the king ;)

:ph34r:

#4 jay4662002

jay4662002

    Private First Class

  • Members
  • 42 posts

Posted 17 October 2007 - 06:05 PM

i run a PhpBB 3 forum where can i find more info on how to patch the issues

#5 welcome

welcome

    Private

  • Members
  • 2 posts

Posted 18 January 2008 - 10:40 PM

^It appears that if you upgrade, you'll be safe from those issues.

You can always write your own board system too in PHP, it's not that hard.
My username is stupid.

#6 FarazMoin

FarazMoin

    Private

  • Members
  • 13 posts

Posted 03 February 2008 - 02:38 AM

A lot of phpBB3 forums have been hacked again by Turkish script kiddies making their rounds. Trying to prove their point about how we shouldn't mess with them. All phpBB3 admins, be warned. Make sure you upgrade as soon as the patch is released. Does anyone have more information regarding this matter?


I am totally agree with you, because my forum was also hacked a few days back
The hacker posted hundred of topics with my [admin] account.
after that i changed my admin password, and also restored my database
but that hack gave me a lot of pain and also wasted hours of my precious time.
to get the things back on track.
at that time i was running phpbb 3 rc7, recently i upgraded to phpbb 3.0.0

#7 williamsmith

williamsmith

    Private

  • Members
  • 1 posts

Posted 26 March 2010 - 09:47 PM

A lot of phpBB3 forums have been hacked again by Turkish script kiddies making their rounds. Trying to prove their point about how we shouldn't mess with them. All phpBB3 admins, be warned. Make sure you upgrade as soon as the patch is released. Does anyone have more information regarding this matter?





Also tagged with one or more of these keywords: exploit, php, patch