Punbb Isnt Very Safe

Ok guys ive noticed punbb isnt a very safe script and has exploits today i noticed two of my punbb forums have a stupid iframe added to all index.php and index.html files

so take care if u use punbb

 

Thanks for letting others know. I have few PunBB-powered forums and all they are good.

Also I haven't noticed any recent talks on PunBB official forums. Maybe it's something to do with your specific install, or host?

 

I wouldn't really use PunBB in the first place, mainly because it's not that known.

 

well both my installs were on big hosts startlogic and dreamhost ... maybe they have a vulnerability in the automatic mod install thing which is launced in the newer versions

@Razz

Punbb is not new and is pretty much known

 

Did you have a custom Dreamhost setup of some sort? I wouldn't necessarily blame PunBB first, though I do find it seriously lacking - not just in the feature department but also for the fact that its performance does not degrade 'gracefully' with added modules.

 

its not dreamhost fault coz it happened in 2 diffrent hosts

 

If you use your hosting password as your mysql password, it would be your fault. It's impossible to judge, since you haven't given much for details.

 

many admin added vulnerability code
which they don't know....
and maybe the thread starter do the same

 

why don't you use SMF instead? SMF is very safe and secure and it has many community members who are actively helping each other.

 

Yea SMF is good but i wanted to use a light wieght software thats why i used punbb