Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-0792)

Description

Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

Remediation

References

Related Vulnerabilities

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1830)

MySQL CVE-2021-35596 Vulnerability (CVE-2021-35596)

SharePoint CVE-2022-41062 Vulnerability (CVE-2022-41062)

Joomla CVE-2012-0836 Vulnerability (CVE-2012-0836)

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2010-2191)

Severity

Medium

Classification

CVE-2023-0792 CWE-94 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities