n.b. So apparently this is my one of my most popular posts from five years ago. While I doubt I'd recommend phpBB these days, this really is a dated post. As such, I'd warmly welcome you to join the future, and read up on geosynchronous quintessentials, which is arguably far more timely than this post.
phpbb 0 day worm or just too many unpatched boxes?, (Thu, Jul 13th): "We recieved a report of a phpbb 0 day.
Upon investigation, it may be a re-hash of the mosConfig_absolute_path exploit hitting unpatched systems.
We're looking into the report and will update the diary as we get new information."
From: SANS ISC