phpBB 2.0.5 + security issue

Forum Moderators: phranque

Message Too Old, No Replies

phpBB 2.0.5 + security issue

EliteWeb

6:10 pm on Jun 21, 2003 (gmt 0)

phpBB 2.0.5 is out, it fixes quite a few vulnerabilities however there is a sql injection attack which will reveil the password hashes of users that will require you to mod your viewtopic.php even after you update to 2.0.5.

This issue works on prior versions, 2.0.5 fixes quite a few security issues, but you need to patch your viewtopic.php file with the changes documented here: [phpbb.com...]

jeremy goodrich

6:16 pm on Jun 23, 2003 (gmt 0)

I've used that software a time or two, thanks for posting the link to the security fix!

I'd be willing to bet lunch there are a LOT of members & lurkers that will be needing to upgrade & or install that security upgrade.