The search function in phpBB 2.x provides a search_id value that leaks the state of PHP's PRNG, which allows remote attackers to obtain potentially sensitive information, as demonstrated by a cross-application attack against WordPress, a different vulnerability than CVE-2006-0632.

More... (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4125)