Description

Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to hijack the authentication of arbitrary users for requests that modify settings.

Remediation

References

CVE-2014-0813

Related Vulnerabilities

MySQL CVE-2020-2770 Vulnerability (CVE-2020-2770)

WordPress 3.7.x Multiple Vulnerabilities (3.7 - 3.7.18)

WordPress Plugin Clipta Video Informer Cross-Site Scripting (1.0)

Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9516)

MySQL CVE-2016-0649 Vulnerability (CVE-2016-0649)

Severity

Medium

Classification

CVE-2014-0813 CWE-352

Tags

Missing Update Known Vulnerabilities