This is from the phpBB blog, and it’s good reading for web designers and webmaster fiddling with their own coding.
http://www.phpbb.com/blog/2009/02/12/injection-vulnerabilities/
This also explains the problems with the old phpBB 2.x being vulnerable. – So everyone of you phpBB 2.x out there, do yourself a favor update to a more secure version.



