There is major vulnerability in phpBB that would give someone access to any account, minimally the attacker would be able to perform any action on the front end like viewing private forums that account has access too, PM's of the user, moderator actions etc. A quick fix before updating here:
This by itself does not grant access to ACP however it is possible conditionally. I don't believe the conditions have been published so I won't post them here, if anyone from Knownhost wants them send me PM. If you are familiar with the features in phpBB it should not be too difficult to figure out.
Not sure what proactive response KH takes on these issues but vulnerable boards could be checked for by querying the version.
phpbb_ is default prefix, it could be different. If version is anything less than 3.3.17 and the following files exist it's vulnerable.
This by itself does not grant access to ACP however it is possible conditionally. I don't believe the conditions have been published so I won't post them here, if anyone from Knownhost wants them send me PM. If you are familiar with the features in phpBB it should not be too difficult to figure out.
Not sure what proactive response KH takes on these issues but vulnerable boards could be checked for by querying the version.
Code:
SELECT `config_value` FROM `phpbb_config` WHERE `config_name` LIKE 'version';phpbb_ is default prefix, it could be different. If version is anything less than 3.3.17 and the following files exist it's vulnerable.
- {phpbb_root}/phpbb/auth/provider/apache.php
- {phpbb_root}/phpbb/auth/provider/ldap.php