Description
phpMyFAQ 1.4.0 allows remote attackers to access the Image Manager to upload or delete images without authorization via a direct request.
Remediation
References
Related Vulnerabilities
MySQL CVE-2023-22054 Vulnerability (CVE-2023-22054)
WordPress Plugin SP Project & Document Manager Unspecified Vulnerability (2.5.7.3)
Oracle HTTP Server CVE-2016-3482 Vulnerability (CVE-2016-3482)
WordPress Plugin Nofollow Links Cross-Site Scripting (1.0.10)
WordPress Plugin Maintenance Mode Unspecified Vulnerability (1.3.3)