Description
SQL injection vulnerability in phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to execute arbitrary SQL commands via vectors involving the restore function.
Remediation
References
Related Vulnerabilities
Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-11201)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-2642)
Oracle Application Server Other Vulnerability (CVE-2002-0843)
WordPress Plugin Olevmedia Shortcodes Cross-Site Scripting (1.1.8)
Jboss EAP Cryptographic Issues Vulnerability (CVE-2014-0058)