Blind POST-based SSRF Vulnerability Discovered in phpBB 4.0.0-alpha1 Web Push Feature
CybersecurityVulnerabilitiesWebSecurityDisclosureSSRF
The post references a security notice regarding a blind POST-based Server-Side Request Forgery (SSRF) vulnerability in phpBB version 4.0.0-alpha1. The issue is specifically related to the Web Push functionality. The post mentions coordination with phpBB for Coordinated Vulnerability Disclosure (CVD).