phpBB exploit in the wild – PHP Security Blog « VT's Tech Blog

« Unobtrusive Degradable Ajax Style Sheet Switcher

Apache Performance and Security Guide »

phpBB exploit in the wild – PHP Security Blog
PHP
26th December 2005 -By Vinu Thomas
A new threat for PHPBB users. Here’s a post from the PHP Security Blog.
“At Halloween 2005 I had disclosed a number of bugs in phpBB, including a remote code execution exploit through the signature_bbcode_uid variable. You will not find this vulnerability in the phpBB security tracker because it is phpBB project’s practise to blame their bugs on PHP and/or otherwise downplay them or hide them. Unfortunately there is now a public exploit for this vulnerability, which was released yesterday while most of us were celebrating christmas.”
Link: phpBB exploit in the wild – PHP Security Blog
Leave a Reply
Click here to cancel reply.
Name (required)
Mail (will not be published) (required)
Website

Notify me of follow-up comments by email.
Notify me of new posts by email.

About the Author
Vinu Thomas
Vinu Thomas is the editor of My Portable World and VT's Tech Blog. As a Technical Architect, he works on PHP and opensource technologies by day and is a mobile enthusiast and blogger. You can follow him on Twitter @vinuthomas and Google+
Syndicate
Subscribe to this site's RSS feed.
Desktop Reader Bloglines Google Live Netvibes Newsgator Yahoo! What's This?
Subscribe by Email
If you're not into RSS feeds, and want to get the latest posts be email, fill in this form, and Google will send you an email everytime a new post is up
Enter your email address:
Sponsors