Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

phpMyFAQ Insufficient Session Expiration Vulnerability (CVE-2023-5865)

Description

Insufficient Session Expiration in GitHub repository thorsten/phpmyfaq prior to 3.2.2.

Remediation

References

Related Vulnerabilities

RubyGems Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-8320)

Perl Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-12883)

Oracle Application Server Other Vulnerability (CVE-2001-1217)

Jenkins Other Vulnerability (CVE-2016-3726)

PHP NULL Pointer Dereference Vulnerability (CVE-2021-21702)

Severity

Critical

Classification

CVE-2023-5865 CWE-613 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities