Description In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.main.php. Remediation References CVE-2017-15734 Related Vulnerabilities WordPress Plugin Master Popups Remote Code Execution (1.0.0) WordPress Plugin Bad Behavior Multiple Vulnerabilities (2.2.18) WordPress Plugin User Registration-Custom Registration Form, Login Form And User Profile PHP Object Injection (2.3.2.1) WordPress Plugin WP Import Export Information Disclosure (3.9.15) Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-2204) Severity High Classification CVE-2017-15734 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities