[clue-talk] warning regarding phpBB
Jason S. Friedman
jason at powerpull.net
Fri May 27 05:27:37 MDT 2005
I host a phpBB bulletin board (version 2.0.11), and it was
hacked yesterday. The phpBB site speaks generally of a
security vulnerability, but does not specify. My symptoms
were the elimination of my forum titles, the probable
deletion of all records with referential integrity to the
forums (such as posts), and a change to the welcome
screen. All changes were in the database, not the PHP
scripts themselves. Fortunately I had database backups
and lost only a day or two of data.
I upgraded to phpBB2.0.15.
More information about the clue-talk
mailing list