Moderate severityNVD Advisory· Published May 5, 2019· Updated Aug 4, 2024
CVE-2019-11767
CVE-2019-11767
Description
Server side request forgery (SSRF) in phpBB before 3.2.6 allows checking for the existence of files and services on the local network of the host through the remote avatar upload function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
phpbb/phpbbPackagist | < 3.2.6 | 3.2.6 |
Affected products
2- phpBB/phpBBdescription
Patches
Vulnerability mechanics
References
3- github.com/advisories/GHSA-4hx9-p925-qcv7ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-11767ghsaADVISORY
- www.phpbb.com/community/viewtopic.phpghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.