To improve the communication between developers and contributors who report possible vulnerabilities in phpBB, we added a Security tracker
to our website. This will from now on replace the security (AT) phpbb.com address, so please use this tracker and do not mail us the information you want to submit. This will ease the work for us tremendously, and will give you as the reporter the benefit of seeing how the issue is handled.
As always, our developers will screen each reported issue carefully and act appropriately. You can also access the Security tracker through our support pages
Visit the Security tracker
PS: Please do not
submit test reports.