Critical auth bypass vulnerability in phpBB(aikido.dev)2 ポイント·投稿者 Tiberium·先月·1 コメントaikido.devCritical auth bypass vulnerability in phpBBhttps://www.aikido.dev/blog/phpbb-authentication-bypass-rce1 コメントコメントを投稿[–]Tiberium·先月返信I tested it myself, seems to reproduce on: 3.1.0-a1 to 3.3.16, 4.0.0-a1 / 4.0.0-a2. Fixed in 3.3.17 and in master.Gives you auth + access to Moderation Control Panel (if the user is a moderator/admin). Does not give access to the Admin Control Panel though.
Gives you auth + access to Moderation Control Panel (if the user is a moderator/admin). Does not give access to the Admin Control Panel though.