Описание
phpBB version 3.2.0 is vulnerable to SSRF in the Remote Avatar function resulting allowing an attacker to perform port scanning, requesting internal content and potentially attacking such internal services via the web application.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| phpbb3 | removed | package | ||
| phpbb3 | not-affected | jessie | package | |
| phpbb3 | not-affected | wheezy | package |
EPSS
Процентиль: 59%
0.0038
Низкий
Связанные уязвимости
CVSS3: 7.5
ubuntu
около 8 лет назад
phpBB version 3.2.0 is vulnerable to SSRF in the Remote Avatar function resulting allowing an attacker to perform port scanning, requesting internal content and potentially attacking such internal services via the web application.
CVSS3: 7.5
nvd
около 8 лет назад
phpBB version 3.2.0 is vulnerable to SSRF in the Remote Avatar function resulting allowing an attacker to perform port scanning, requesting internal content and potentially attacking such internal services via the web application.
EPSS
Процентиль: 59%
0.0038
Низкий