CVE-2020-8226: Server-Side Request Forgery (SSRF)

August 17, 2020 (updated August 21, 2020)

A vulnerability in phpBB’s remote image dimensions check can be abused to execute SSRF attacks.

References

nvd.nist.gov/vuln/detail/CVE-2020-8226
www.phpbb.com/community/viewtopic.php?f=14&t=2562631
www.phpbb.com/community/viewtopic.php?f=14&t=2562636

Code Behaviors & Features

Detect and mitigate CVE-2020-8226 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →