First published: Tue Jan 14 2020(Updated: )
phpBB 3.2.8 allows a CSRF attack that can approve pending group memberships.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Phpbb Phpbb | =3.2.8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this phpBB vulnerability is CVE-2020-5502.
The title of this vulnerability is 'phpBB 3.2.8 allows a CSRF attack that can approve pending group memberships.'
The severity of CVE-2020-5502 is medium with a CVSS score of 6.5.
phpBB version 3.2.8 is affected by CVE-2020-5502.
There is currently no known fix for this vulnerability. It is recommended to stay updated with the latest security advisories and patches provided by phpBB.