CVE-2020-5501

CVE-2020-5501

phpBB 3.2.8 allows a CSRF attack that can modify a group avatar.

Source: CVE-2020-5501