Source: RipsTech

phpBB 3.2.3: Phar Deserialization to RCE

https://blog.ripstech.com/2018/phpbb3-phar-deserialization-to-remote-code-execution/

100 hits since 2018-11-20

PHP Vulns Source Ratio: 27% (52 total, 7 propagated, 26 filtered)