Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2023-4006)

Description

Improper Neutralization of Formula Elements in a CSV File in GitHub repository thorsten/phpmyfaq prior to 3.1.16.

Remediation

References

Related Vulnerabilities

PHP Resource Management Errors Vulnerability (CVE-2010-1861)

WordPress Plugin FooBox Image Lightbox Security Bypass (2.6.3)

WordPress Plugin WP Coder-add custom html, css and js code SQL Injection (2.5.3)

Dolibarr Incorrect Default Permissions Vulnerability (CVE-2020-13240)

WordPress Plugin WordPress Backup and Migrate-Backup Guard Unspecified Vulnerability (1.0.6)

Severity

Critical

Classification

CVE-2023-4006 CWE-1236 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities