GHSA-6pgr-x867-h7jx

Suggest an improvement
Source
https://github.com/advisories/GHSA-6pgr-x867-h7jx
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-6pgr-x867-h7jx/GHSA-6pgr-x867-h7jx.json
JSON Data
https://api.test.osv.dev/v1/vulns/GHSA-6pgr-x867-h7jx
Aliases
Published
2022-05-24T16:45:05Z
Modified
2024-04-24T18:11:50.571662Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
phpBB Denial of Service
Details

The fulltext search component in phpBB before 3.2.6 allows Denial of Service.

Database specific
{
    "nvd_published_at": "2019-05-02T21:29:00Z",
    "cwe_ids": [
        "CWE-20"
    ],
    "severity": "HIGH",
    "github_reviewed": true,
    "github_reviewed_at": "2024-04-24T17:50:31Z"
}
References

Affected packages

Packagist / phpbb/phpbb

Package

Name
phpbb/phpbb
Purl
pkg:composer/phpbb/phpbb

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.2.6

Affected versions

3.*

3.0.12-RC1
3.0.12-RC2
3.0.12-RC3
3.0.12
3.0.13-PL1
3.0.13-RC1
3.0.13
3.0.14-RC1
3.0.14
3.1.0-a1
3.1.0-a2
3.1.0-a3
3.1.0-b1
3.1.0-b2
3.1.0-b3
3.1.0-b4
3.1.0-RC1
3.1.0-RC2
3.1.0-RC3
3.1.0-RC4
3.1.0-RC5
3.1.0-RC6
3.1.0
3.1.1
3.1.2-RC1
3.1.2
3.1.3-RC1
3.1.3-RC2
3.1.3
3.1.4-RC1
3.1.4-RC2
3.1.4
3.1.5-RC1
3.1.5
3.1.6-RC1
3.1.6
3.1.7-RC1
3.1.7
3.1.7-pl1
3.1.8-RC1
3.1.8
3.1.9-RC1
3.1.9
3.1.10-RC1
3.1.10
3.1.11-RC1
3.1.11
3.1.12
3.2.0-a1
3.2.0-b2
3.2.0-RC1
3.2.0-RC2
3.2.0
3.2.1-RC1
3.2.1
3.2.2-RC1
3.2.2
3.2.3-RC1
3.2.3-RC2
3.2.3
3.2.4-RC1
3.2.4
3.2.5-RC1
3.2.5
3.2.6-RC1