GCVE - cpe:2.3:a:phpbb:phpbb:3.2.8:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:phpbb:phpbb:3.2.8:*:*:*:*:*:*:*

part: a version: 3.2.8 update: *

Vendor	Phpbb (`3b8545c5-ebe8-5695-b55a-b077792aa8a9`)
Product	Phpbb (`02c687c8-c390-5ec1-b1ce-9e7958426c2f`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/phpbb/phpbb`	purl2cpe	2026-06-01 10:11:51.918737
`pkg:rpm/opensuse/phpbb`	purl2cpe	2026-06-01 10:11:51.918738

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-5502`	vulnerable	2026-06-03 14:42:56.493461	Details available phpBB 3.2.8 allows a CSRF attack that can approve pending group memberships. Published: 2020-01-14T23:59:00.000Z Updated: 2024-08-04T08:30:24.337Z Open on db.gcve.eu Reference links https://blog.phpbb.com/category/security/ https://www.phpbb.com/community/viewtopic.php?f=14&t=2534536	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-5501`	vulnerable	2026-06-03 14:42:56.493055	Details available phpBB 3.2.8 allows a CSRF attack that can modify a group avatar. Published: 2020-01-14T23:57:43.000Z Updated: 2024-08-04T08:30:24.287Z Open on db.gcve.eu Reference links https://blog.phpbb.com/category/security/ https://www.phpbb.com/community/viewtopic.php?f=14&t=2534536	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.