phpBB < 3.0.1 Multiple Information Disclosure Vulnerabilities
Medium Nessus Network Monitor Plugin ID 4475
SynopsisThe remote host is vulnerable to multiple attack vectors.
DescriptionAccording to its banner, the remote host is running a version of phpBB that is vulnerable to several flaws. An attacker exploiting these flaws would need the ability to authenticate as a valid user. Successful exploitation would allow the user to view user lists and email attachments of other users.
SolutionUpgrade to version 3.0.1 or higher.