FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

phpbb -- privilege elevation and path disclosure

Affected packages
phpbb < 2.0.13

Details

VuXML ID 53e711ed-8972-11d9-9ff8-00306e01dda2
Discovery 2005-02-27
Entry 2005-02-28
Modified 2005-03-05

The phpbb developer group reports:

phpBB Group announces the release of phpBB 2.0.13, the "Beware of the furries" edition. This release addresses two recent security exploits, one of them critical. They were reported a few days after .12 was released and no one is more annoyed than us, having to release a new version ini such a short period of time. Fortunately both fixes are easy and in each case just one line needs to be edited.

References

Bugtraq ID 12678
URL http://www.phpbb.com/phpBB/viewtopic.php?t=267563