Firstly all passwords are encrypted on our site, so even I would not be able to tell you what it was if you did not remember it.

All that appears to have been done is the amending of 2 phpbb tables, which caused Javascript redirection scripts to be inserted into certain fields and setting the phpbb to "unavailable". I corrected the 2 phpbb tables and made the site "available" again and everything is back to normal.

It's a known vunerablity in this version of phpbb, but as mentioned earlier, we cannot address the upgrade untill WILL gets back.