NameSilo

PhpBB EXPLOIT fix ASAP

SpaceshipSpaceship
Watch
Peter

Peter

VIP Member
VIP
★ 20 ★
Impact
209
Think this is the best place for this but anyway a bug was found a while back in phpBB and should be fixed ASAP.

The bug itself is to do with the highlighting system all detasils on how to do the fix is located at http://www.phpbb.com/phpBB/viewtopic.php?t=240513 (just 1 file edit)
 
Reply
0
0 Like
0 Thanks
•••
The views expressed on this page by users and staff are their own, not those of NamePros.
Unstoppable Domains — AI StorefrontUnstoppable Domains — AI Storefront
Sort by date Sort by points
i didnt know phpBB worked off ASP i thought it was php some one help!!!! im being seriouse lol
 
Reply
0
0 Like
0 Thanks
•••
please please tell me where you say im being serious you are not being serious hehe

But on a serious note this looks like a major bug that can cause someone to execute malicious code on the server which could basically do anything included dropping a database or deleting files on the server (in fact the person who discovered this bug had files deleted on their server and was accused of doing it themselves by their ISP).
 
Reply
0
0 Like
0 Thanks
•••
Wow, this is a huge surprise, especially after the dev team said the exploits were fake. Anyone know if this bug affects all versions of phpBB? (I'm running an early 2.0.x on one of my sites.)
 
Reply
0
0 Like
0 Thanks
•••
yes it does,
 
Reply
0
0 Like
0 Thanks
•••
DuffMan said:
Wow, this is a huge surprise, especially after the dev team said the exploits were fake. Anyone know if this bug affects all versions of phpBB? (I'm running an early 2.0.x on one of my sites.)
Click to expand...

You should upgrade to v2.0.11 ASAP.

Read this thread about it:
http://www.namepros.com/showthread.php?p=369274
 
Reply
0
0 Like
0 Thanks
•••
Thanks a lot.

Mass-mailed my webhosting user and fixed my own.

Cheers,
Matt
 
Reply
0
0 Like
0 Thanks
•••
Weird, I just upgraded and when I try to login or go to the admin panel I get sent to microsoft.com. What's up with that?

EDIT: Looks like it sends me to Microsoft.com after I login or logout, and when I try to access the admin panel when not logged in. I've checked my settings and they're fine.
 
Last edited:
Reply
0
0 Like
0 Thanks
•••
are you sure it only happens on your forum, check your pc with an antivirus etc.

I very much doubt the update would cause this unless you did not download it from the official site.
 
Reply
0
0 Like
0 Thanks
•••
Log in or sign up to reply here.
Dynadot — .com TransferDynadot — .com Transfer

Similar threads

Redleg
PhpBB 2.0.12 released!
11 replies
1K views
Peter
Peter
A
PhpBB 2.0.13 releaed - Critical
3 replies
716 views
Redleg
Redleg
Eric
For those who use phpBB -- phpBB 2.0.19 Released
4 replies
907 views
Peter
Peter
A
PhpBB 2.0.14 Released!
0 replies
1K views
adam_uk
A
Redleg
PhpBB 2.0.15 Released. Critical Update!
9 replies
804 views
hotrod12
H
CatchedCatched

We're social

Escrow.com

New posts ➔

Spaceship

Auction activity ➔

Rexus Domain

How do you think a potential buyer first checks if your domain is for sale?

Polls of interest ➔

CryptoExchange.com

Hot this week ➔

Domain Recover

Community favorite ➔

CatchDoms

Hot this month ➔

Blog favorites

DomDB

  1. ratworks.com

    • Show Price

  2. CoachCoin.com

    • Show Price

  3. MaxPlumbers.com

    • Make Offer

  4. TMHL.com

    • Make Offer

  5. ArsMedical.com

    • Make Offer

  6. sapientio.com

    • Make Offer

  7. yscp.com

    • Make Offer

  8. GynoidGame.com

    • Make Offer

  9. EvtolNews.com

    • Buy Now
    • $250,000

  10. IdaCoin.com

    • Show Price
NameFit
  • The sidebar remains visible by scrolling at a speed relative to the page’s height.
Back