Description
The admin backend in phpMyFAQ before 2.9.11 allows CSV injection in reports.
Remediation
References
Related Vulnerabilities
WordPress Plugin Themify-WooCommerce Product Filter SQL Injection (1.4.9)
OpenSSL Improper Input Validation Vulnerability (CVE-2008-5077)
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-7983)
Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-8793)
WordPress Plugin Extra User Details Privilege Escalation (0.4.2)