Description
Server side request forgery (SSRF) in phpBB before 3.2.6 allows checking for the existence of files and services on the local network of the host through the remote avatar upload function.
Remediation
References
Related Vulnerabilities
Oracle Application Server Other Vulnerability (CVE-2005-3451)
Envoy Proxy Use After Free Vulnerability (CVE-2025-54588)
MediaWiki Improper Access Control Vulnerability (CVE-2015-8627)
MySQL CVE-2021-2164 Vulnerability (CVE-2021-2164)
WordPress Plugin YITH WooCommerce Quick View Security Bypass (1.3.13)