CVE-2010-1627 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1627): feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to permission settings on a private forum.
CVE-2010-1630 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1630): Unspecified vulnerability in posting.php in phpBB before 3.0.5 has unknown impact and attack vectors related to the use of a "forum id" in circumstances related to a "global announcement."
You can find updated ebuilds in bug #272311
+*phpBB-3.0.7_p1 (21 Aug 2010) + + 21 Aug 2010; Alex Legler <a3li@gentoo.org> -phpBB-3.0.4.ebuild, + +phpBB-3.0.7_p1.ebuild: + Non-maintainer commit: Version bump for security bug 320977. Also closes + bump request 272311, thanks to all the people there who submitted ebuilds. + Removing vulnerable ebuild. + Closing noglsa.