phpbb/phpbb Security Advisories (12)
-
[HIGH] phpBB arbitrary CSS injection
PKSA-b3tk-777y-1fwc CVE-2019-16108 GHSA-8hc2-hvrc-x4qr
Affected version: =3.2.7
Reported by:
GitHub -
[MEDIUM] phpBB Cross-Site Request Forgery (CSRF)
PKSA-z6dh-45h4-1nm6 CVE-2019-16107 GHSA-wg24-9xm9-593v
Affected version: =3.2.7
Reported by:
GitHub -
[MEDIUM] phpBB Cross-Site Request Forgery (CSRF)
PKSA-wdkg-4wdb-b14k CVE-2020-5501 GHSA-cpqc-g4r8-6hxg
Affected version: =3.2.8
Reported by:
GitHub -
[MEDIUM] phpBB allows CSRF
PKSA-tqfr-br33-x7t7 CVE-2020-5502 GHSA-69q7-hww4-8pjq
Affected version: <=3.2.8
Reported by:
GitHub -
[HIGH] phpBB Cross-Site Request Forgery (CSRF)
PKSA-cvh3-x4sm-mkdz CVE-2019-16993 GHSA-vj3x-vfm4-hvxc
Affected version: <3.1.7-PL1
Reported by:
GitHub -
[MEDIUM] phpBB Cross-Site Request Forgery (CSRF)
PKSA-q7ss-3rhj-ddrt CVE-2019-13376 GHSA-6mh2-98gr-wv76
Affected version: <=3.2.7
Reported by:
GitHub -
[MEDIUM] phpBB Server side request forgery (SSRF)
PKSA-ky55-xhxx-k8n8 CVE-2019-11767 GHSA-4hx9-p925-qcv7
Affected version: <3.2.6
Reported by:
GitHub -
[HIGH] phpBB Denial of Service
PKSA-hm89-vsd6-zc2r CVE-2019-9826 GHSA-6pgr-x867-h7jx
Affected version: <3.2.6
Reported by:
GitHub -
[MEDIUM] phpBB Open Redirect
PKSA-jsmk-yhx5-v3pz CVE-2015-3880 GHSA-hwq7-cvp8-6hm3
Affected version: >=3.1.0,<3.1.4|<3.0.14
Reported by:
GitHub -
[HIGH] phpBB Server-Side Request Forgery (SSRF)
PKSA-t83q-9gf8-fmtr CVE-2017-1000419 GHSA-9jm4-rg99-566c
Affected version: =3.2.0
Reported by:
GitHub -
[HIGH] phpBB Remote Code Execution
PKSA-64gs-zcr1-8gvs CVE-2018-19274 GHSA-h3mr-q96r-37v4
Affected version: <3.2.4
Reported by:
GitHub -
[MEDIUM] Vulnerability which allows remote image dimensions check to be used to SSRF
PKSA-fvv8-yym2-vcvr CVE-2020-8226 GHSA-jhm9-h84h-rw83
Affected version: >=3.2.0,<3.2.10|>=3.3.0,<3.3.1
Reported by:
GitHub, FriendsOfPHP/security-advisories