VULHUB ™

It has been reported that PhpBB may be prone to multiple vulnerabilities that may allow an attacker to carry out SQL injection and cross-site scripting attacks. These issues are reported to affect the 'id' parameter of 'admin_words.php' module. The SQL injection attack requires administrator level access. PhpBB version 2.0.6c has been reported to be affected by these issues, however, it is possible that other versions are affected as well.

It has been reported that PhpBB may be prone to multiple vulnerabilities that may allow an attacker to carry out SQL injection and cross-site scripting attacks. These issues are reported to affect the 'id' parameter of 'admin_words.php' module. The SQL injection attack requires administrator level access. PhpBB version 2.0.6c has been reported to be affected by these issues, however, it is possible that other versions are affected as well.