Description

SQL injection vulnerability in password.php in PhpMyFaq 1.5.1 allows remote attackers to modify SQL queries and gain administrator privileges via the user field.

Remediation

References

CVE-2005-3046

Related Vulnerabilities

WordPress Plugin ALO EasyMail Newsletter Cross-Site Scripting (2.8.1)

ProjectSend Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2024-7658)

WordPress Plugin Per page add to head Cross-Site Request Forgery (1.4.3)

MySQL CVE-2019-2997 Vulnerability (CVE-2019-2997)

WordPress Plugin SPNbabble Cross-Site Request Forgery (1.4.1)

Severity

Medium

Classification

CVE-2005-3046 CWE-138

Tags

Missing Update Known Vulnerabilities