Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

phpMyFAQ Authentication Bypass by Capture-replay Vulnerability (CVE-2023-1886)

Description

Authentication Bypass by Capture-replay in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

Remediation

References

Related Vulnerabilities

Perl Numeric Errors Vulnerability (CVE-2005-3962)

WordPress Plugin Appointments PHP Object Injection (2.2.1)

Apache HTTP Server Other Vulnerability (CVE-2007-1742)

Ruby CVE-2021-41819 Vulnerability (CVE-2021-41819)

WordPress Plugin Coming Soon, Under Construction & Maintenance Mode By Dazzler Cross-Site Scripting (1.6.6)

Severity

Critical

Classification

CVE-2023-1886 CWE-294 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities