phpBB2 Plus 1.53a Language File Vulnerable

Administrator Anmeldungsdatum: 02.08.2002 Beiträge: 4735 Wohnort: Aachen

A critical Security Hole was found in 2 Language Files of phpBB2 Plus 1.5x. Please add this fix very quickly to the following Files:

language/lang_german/lang_main_album.php
language/lang_german/lang_admin_album.php
language/lang_english/lang_main_album.php
language/lang_english/lang_admin_album.php

Open the Files and find at the Top of the file:

Code:

/***************************************************************************
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
***************************************************************************/

add below:

Code:

if ( !defined('IN_PHPBB') )
{
die('Hacking attempt');
exit;
}

Add the Code to all listed files. If you have different languages installed, also add the fix to all other languages !!!

Edit: Please add this fix also : http://www.phpbb2.de/ftopic45080.html