Phpbb is a very good forum with its lot of moda ehich i love to use,but these sql injection are increasing ,i have heard many webmasters facing the same problem ,the phpbb team has to do something about it,its really stupid that the most famous forum software is the one with the most security holes .
but again its like ie ,the more famous,the more hackers try to find security holes in it.

owwhh....i was wondering to used phpbb...is it really that this script so easy to stole...... can anyone give me a script that really safe for my new coming forum...)

It's not about the script being stolen or anything like that, it's about being exploited due to the security holes it has. The developers at phpBB need to patch up these exploits as quickly as they can. The last time I read up about this, they weren't quick on their part...so I guess many had problems already.

If you want a "good" forum, try out Simple Machines Forum at:

http://www.simplemachines.org

They usually patch up the security holes very quickly...sometimes even before it's known to the public (lots of forum testers ).

I've always stood away from phpBB, even its lightweight feature list is enough for me.
All the sites you see that have been hacked have most likely used phpBB, there are quite a few alternatives and i'd say any of them would be better than phpBB.

You can go here: http://www.opensourcecms.com and check out the forum demos on the site.

-HellFire

I just recently switched my forums from phpbb3 to the latest SMF. I didn't have many posts on it anyway, so I figured I'd try it out. Everyone I've asked ranks SMF 3rd behind vB and IPB, so I figured it was worth a shot.

Anyway, I'm having fun with SMF so far; everything is easier with it, and there's alot of features that work out of the box with SMF that I have to spend a few hours modding phpbb to get. I may try phpbb3 again when there are some decent mods out for it, but until then, I'm sticking with SMF.

I've been thru a similar situation. Basically, i guess the hacker managed to get into my hosting account. Messed with my SQL database, and then, each time i loaded the forum, it redirected to his page where he left his mark. Sad.

I've learnt my lesson too. And now, i use vBulletin, far more secure. Way secure!

It Happened to me as well My phpbb forum site was hacked too!! I believe the security problem is sorted out in phpbb 3!!!

I would recommend people to avoid using phpbb 2 as well!!!

Regards

So can you still do that same hack on phpBB3 or not?

i'm kinda dubble sided as to what software i should use for my new forums. I have both experiences with phpBB and SMF. I was considering phpBB3 now so my new forums. Does anyone want to back phpBB3 or still reccomend me to go for SMF?

I would recommend you to stay with SMF because hardly anyone is using PhpBB 3 and we dont know if it has any security issues but i'm sure its going to be much safer than PhpBB2!!

I'll say stick with SMF

The problem with phpBB is that they sort of have a bad reputation for keeping up to date with their security issues....at least from what I read from other phpBB users. SMF is usually really quick on the trigger and the patches are deployed and installed usually with just two clicks or so.