Exploit in phpBB2 -- upgrade, upgrade, upgrade
Submitted by Joey Manley on December 11, 2004 - 00:17
This goes for anybody who is using phpBB2 to run a forum. You need to upgrade to the latest version: phpBB 2.011 -- NOW!!! There is a serious security flaw in earlier versions.
They have a patch file, as well as a full install you can download.
I'm not sure if the "patch" can be applied to a pn/phpBB hybrid like you've got going on here on Comixpedia, but there is a way to at least close the most important security hole in phpBB2 by changing one line of code.
Here's the info on how to plug the hole without using the actual patch:
Here's where to get the patch, if that'll work for your installation: