Description

In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php.

Remediation

References

CVE-2017-15808

Related Vulnerabilities

Ruby on Rails Other Vulnerability (CVE-2021-22904)

MySQL CVE-2021-35618 Vulnerability (CVE-2021-35618)

Apache read beyond bounds via ap_rwrite() Vulnerability (CVE-2022-28614)

WordPress Plugin Uncanny Toolkit for LearnDash Cross-Site Request Forgery (3.6.4.1)

WordPress Plugin Duplicator-WordPress Migration Unspecified Vulnerability (1.1.34)

Severity

High

Classification

CVE-2017-15808 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities