PhpBB 3.2.8 Cross-Site Request Forgery (CSRF) Vulnerability

Summary

PhpBB 3.2.8 suffers from cross-site request forgery (CSRF) vulnerability

Credit:

The information has been provided by Vendor

The original article can be found at:https://blog.phpbb.com/category/security/


Details

PhpBB 3.2.8 allows a CSRF attack that can approve pending group memberships.

 

Vulnerable Systems:

PhpBB 3.2.8 

 

CVE Information:

CVE-2020-5502

 

Disclosure Timeline:
Published Date:1/14/2020

Categories: News