phpBB • Free and Open Source Forum Software

I was just wondering where I could find more details about it. I mean of course support is over but are there any articles left? I am just looking for information. I am not trying to fix it myself. I am just looking to find out what caused it and what fixed it.

Hi I am looking for more information about 2.0.11 cookie exploit for research purposes. [Removed link - Marshalrusty] I am looking what exactly caused caused it and how it really worked. The tutorial only show how to do that but I am looking for mor detail. Is it just SQL injectioin or something els...

solved

Hello. I am trying to add new tab to ucp but I cant find way to use my php file. What I have done sofar: 1)ACP -> SYSTEM -> module management -> User control panel I have added category "Manage games" with no parent. (This show up in ucp.) 2) Under category "Manage games" I've ad...

That board is long dead.

does anyone know what mod shows news on index page? news on http://www.aobot.org/index.php are taken from http://www.aobot.org/forum/viewforum.php?f=24

I'll try to fix but not sure If iknow how to.

...Not sure what i need to edit.

didn't update it. I uploaded install folder and then i clicked on update tab I get this..

I cam currently trying to figure out what i need to change in phpbb files to make that update tab work. do i need to change, add or remove include sentences?

I tried to upgrade my board from3.0.8 to 3.0.10 but I got following error: [phpBB Debug] PHP Notice: in file /includes/session.php on line 1908: require(./../includes/functions_karma.php) [function.require]: failed to open stream: No such file or directory Fatal error: require() [function.require]: ...

Thanks. I'll look into this mod.

If an attacker is able to get your database he most likely has access to your server which means that encrypting the database won't do a thing. You need to remember that phpBB itself need to be able to decrypt the information in order to display it to your user. Therefore the decryption method and ...

If he has access to DB. For example: on same server there might be not so secure CMS/forum/blog that can be exploited to run php code.That php code could then steal DB login.. Or if I pay someone to work with my forum/DB then I might have to give him DB access. Or someone might just steal my firefox...

I would like to see topic encryption which would encrypt topics so that if someone happen to get database access he wouldn't be able to read the topics. Post could have checkbox "encrypt". And when it's checked checked then user would be asked password when he hits submit button and then b...

Cookie settings > Cookie domain: changed to: .autoit.net.ee but didn't help

my site changed from pri.ee to net.ee few month ago? maybe anyting else it messed up? or is there toggle to switch between sid= or cookie?

edit: had to change Domain name:

http://autoit.net.ee/forum/ mostly it's for testing but this sid is still annoying.