phpBB: Critical security vulnerability allows compromise

In the phpBB forum software, IT researchers have discovered a critical security vulnerability that allows access with any ...
Bleeping Computer

Hacker Compromised Official phpBB Download Links

An unknown attacker has compromised download links for the phpBB forum software, according to a statement released today by the phpBB development team. The hacker compromised only two downloads links, ...
Infosecurity Magazine

Critical phpBB Flaw Lets Attackers Hijack Any Account with One Request

An attacker who gets a logged-in victim to load a crafted URL can silently bind their own OAuth credential to the victim's ...
Bleeping Computer

phpBB forum fixes auth bypass bug lurking for a decade

A 10-year-old authentication bypass vulnerability discovered in the phpBB forum software allows an attacker to log in as any user, including administrators. The flaw does not have an identifier and is ...