Source: RipsTech

phpBB 3.2.3: Phar Deserialization to RCE

https://blog.ripstech.com/2018/phpbb3-phar-deserialization-to-remote-code-execution/

279 hits since 2018-11-20

PHP Vulns Source Ratio: 45% (66 total, 15 propagated, 33 filtered)