phpBB search.php SQL Injection Vulnerability

info
discussion
exploit
solution
references

phpBB search.php SQL Injection Vulnerability

It has been reported that phpBB may be prone to a SQL injection vulnerability that may allow an attacker to disclose sensitive information by supplying malicious SQL code to the underlying database.

phpBB version 2.06 has been prone to this issue, however other versions may be affected as well.