A friend of mine who is into such things highlighted a new security flaw found in PHP forums.

I was worried someone might use it to damage PF, so i got him to try it and see if it worked on here, it did, he made me an admin, I told stu and pet, but while i was admin i made acouple of humouress (nothing malicious or nasty though obviously!) changes to the forum, including my title, which Pet has let me keep as a thankyou for finding the flaw and giving him details of how to fix it.