phpBB 2.0.19 search.php and profile.php DOS Vulnerability

HYSA-2006-001 Advisory 010

Date - Wed Jan 25 2006


phpBB 2.0.19 search.php and profile.php DOS Vulnerability




phpBB 2.0.19 and prior


phpBB is a high powered, fully scalable, and highly customizable
Open Source bulletin board package. phpBB has a user-friendly
interface, simple and straightforward administration panel, and
helpful FAQ. Based on the powerful PHP server language and your
choice of MySQL, MS-SQL, PostgreSQL or Access/ODBC database servers,
phpBB is the ideal free community solution for all web sites.

Support Website :


The bug was originally found by HaCkZaTaN of NeoSecurityteam. The
original exploit code can be found at -

This one affected only versions uptill phpBB 2.0.15. The exploit code
has been recoded which affects the latest version too. The bug resides
in the following two scripts-

profile.php << By registering as many users as you can.
search.php << By searching in a way that the db cannot understand.