Description
phpMyFAQ before 2.8.13 allows remote attackers to read arbitrary attachments via a direct request.
Remediation
References
Related Vulnerabilities
WordPress Plugin Plugin Central Multiple Cross-Site Scripting Vulnerabilities (2.5)
WordPress Plugin SW Ajax WooCommerce Search Cross-Site Scripting (1.2.6)
SharePoint CVE-2023-21743 Vulnerability (CVE-2023-21743)
Plone CMS Missing Authentication for Critical Function Vulnerability (CVE-2020-35190)
WordPress Plugin Extra User Details Privilege Escalation (0.4.2)