Description

SQL injection vulnerability in password.php in PhpMyFaq 1.5.1 allows remote attackers to modify SQL queries and gain administrator privileges via the user field.

Remediation

References

CVE-2005-3046

Related Vulnerabilities

Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-35029)

Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43164)

WordPress Plugin Pricing Table by Supsystic Multiple Vulnerabilities (1.8.7)

WordPress Plugin WatuPRO SQL Injection (5.5.3.6)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2359)

Severity

Medium

Classification

CVE-2005-3046 CWE-138

Tags

Missing Update Known Vulnerabilities