Description
phpBB 3.2.8 allows a CSRF attack that can approve pending group memberships.
Remediation
References
Related Vulnerabilities
Apache HTTP Server Other Vulnerability (CVE-2003-1307)
phpMyFAQ Sensitive Cookie in HTTPS Session Without 'Secure' Attribute Vulnerability (CVE-2023-5866)
MySQL CVE-2021-2076 Vulnerability (CVE-2021-2076)
Liferay DXP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2024-25606)