Description
phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th and December 15th 2010, contains an externally introduced modification (Trojan Horse) in the getTopTen method in inc/Faq.php, which allows remote attackers to execute arbitrary PHP code.
Remediation
References
Related Vulnerabilities
Apache HTTP Server CVE-2013-2249 Vulnerability (CVE-2013-2249)
Internet Information Services Other Vulnerability (CVE-2001-0508)
WeBid Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7118)
MySQL CVE-2014-2494 Vulnerability (CVE-2014-2494)
Liferay Portal Deserialization of Untrusted Data Vulnerability (CVE-2019-16891)