Description
phpBB 3.2.8 allows a CSRF attack that can modify a group avatar.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Testimonial Manager SQL Injection (1.2.0)
MySQL CVE-2019-2630 Vulnerability (CVE-2019-2630)
WordPress 6.5 Cross-Site Scripting (6.5)
IBM RTC Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-0748)
WordPress Plugin WooCommerce Customers Manager Privilege Escalation (26.4)