Description
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for modifying a glossary.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP FuneralPress Multiple Cross-Site Scripting Vulnerabilities (1.1.6)
MediaWiki Improper Privilege Management Vulnerability (CVE-2018-0503)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0009)
WordPress Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-14028)