No vulnerability was found into phpBB3 itself.
Please note that your account on phpbb.com might have been compromised (e.g. : password leaked) if you didn't login after the conversion to the new password hashing system (MD5 can be bruteforced).
Please note also that we strongly advice you not to use the same combination password-username across the web.
Please report here all the sites/blogs where the data stolen at phpbb.com are mirrored (this include lamer post copy)
Useful inkages:
- phpBB 3.0.x support: http://area51.phpbb.com/phpBB/viewforum.php?f=71
- phpBB 3.0.x download: http://www.ohloh.net/p/phpbb/download
- (phpBB2 support is no more as you should already know)
and then ...
further details:
- global announcement here
- Startrekguide topic: http://startrekguide.com/community/view ... =60&t=9369
(Highway of Life site)
(and btw ... yep, I know that global announcements aren't distributed within RSS, but this is a bug I haven't had the time to fix yet
)
