Lucene search
HistoryFeb 14, 2014 - 4:55 p.m.
CVE-2014-0813
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.1 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.4%
Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to hijack the authentication of arbitrary users for requests that modify settings.
Affected configurations
Node
phpmyfaqphpmyfaqRange≤2.8.5
ORphpmyfaqphpmyfaqMatch1.0
ORphpmyfaqphpmyfaqMatch1.0.1
ORphpmyfaqphpmyfaqMatch1.0.1a
ORphpmyfaqphpmyfaqMatch1.1.0
ORphpmyfaqphpmyfaqMatch1.1.1
ORphpmyfaqphpmyfaqMatch1.1.2
ORphpmyfaqphpmyfaqMatch1.1.3
ORphpmyfaqphpmyfaqMatch1.1.4
ORphpmyfaqphpmyfaqMatch1.1.4a
ORphpmyfaqphpmyfaqMatch1.1.5
ORphpmyfaqphpmyfaqMatch1.2.0
ORphpmyfaqphpmyfaqMatch1.2.1
ORphpmyfaqphpmyfaqMatch1.2.2
ORphpmyfaqphpmyfaqMatch1.2.3
ORphpmyfaqphpmyfaqMatch1.2.4
ORphpmyfaqphpmyfaqMatch1.2.5
ORphpmyfaqphpmyfaqMatch1.2.5a
ORphpmyfaqphpmyfaqMatch1.2.5b
ORphpmyfaqphpmyfaqMatch1.3.0
ORphpmyfaqphpmyfaqMatch1.3.1
ORphpmyfaqphpmyfaqMatch1.3.2
ORphpmyfaqphpmyfaqMatch1.3.3
ORphpmyfaqphpmyfaqMatch1.3.4
ORphpmyfaqphpmyfaqMatch1.3.5
ORphpmyfaqphpmyfaqMatch1.3.6
ORphpmyfaqphpmyfaqMatch1.3.7
ORphpmyfaqphpmyfaqMatch1.3.8
ORphpmyfaqphpmyfaqMatch1.3.9
ORphpmyfaqphpmyfaqMatch1.3.9pl1
ORphpmyfaqphpmyfaqMatch1.3.10
ORphpmyfaqphpmyfaqMatch1.3.11
ORphpmyfaqphpmyfaqMatch1.3.12
ORphpmyfaqphpmyfaqMatch1.3.13
ORphpmyfaqphpmyfaqMatch1.3.14
ORphpmyfaqphpmyfaqMatch1.4
ORphpmyfaqphpmyfaqMatch1.4alpha1
ORphpmyfaqphpmyfaqMatch1.4alpha2
ORphpmyfaqphpmyfaqMatch1.4.0
ORphpmyfaqphpmyfaqMatch1.4.0a
ORphpmyfaqphpmyfaqMatch1.4.1
ORphpmyfaqphpmyfaqMatch1.4.2
ORphpmyfaqphpmyfaqMatch1.4.3
ORphpmyfaqphpmyfaqMatch1.4.4
ORphpmyfaqphpmyfaqMatch1.4.5
ORphpmyfaqphpmyfaqMatch1.4.6
ORphpmyfaqphpmyfaqMatch1.4.7
ORphpmyfaqphpmyfaqMatch1.4.8
ORphpmyfaqphpmyfaqMatch1.4.9
ORphpmyfaqphpmyfaqMatch1.4.10
ORphpmyfaqphpmyfaqMatch1.4.11
ORphpmyfaqphpmyfaqMatch1.5
ORphpmyfaqphpmyfaqMatch1.5alpha1
ORphpmyfaqphpmyfaqMatch1.5alpha2
ORphpmyfaqphpmyfaqMatch1.5beta1
ORphpmyfaqphpmyfaqMatch1.5beta2
ORphpmyfaqphpmyfaqMatch1.5beta3
ORphpmyfaqphpmyfaqMatch1.5rc1
ORphpmyfaqphpmyfaqMatch1.5rc2
ORphpmyfaqphpmyfaqMatch1.5rc3
ORphpmyfaqphpmyfaqMatch1.5rc4
ORphpmyfaqphpmyfaqMatch1.5rc5
ORphpmyfaqphpmyfaqMatch1.5.0
ORphpmyfaqphpmyfaqMatch1.5.1
ORphpmyfaqphpmyfaqMatch1.5.2
ORphpmyfaqphpmyfaqMatch1.5.3
ORphpmyfaqphpmyfaqMatch1.5.4
ORphpmyfaqphpmyfaqMatch1.5.5
ORphpmyfaqphpmyfaqMatch1.5.6
ORphpmyfaqphpmyfaqMatch1.5.7
ORphpmyfaqphpmyfaqMatch1.5.8
ORphpmyfaqphpmyfaqMatch1.5.9
ORphpmyfaqphpmyfaqMatch1.6.0
ORphpmyfaqphpmyfaqMatch1.6.1
ORphpmyfaqphpmyfaqMatch1.6.2
ORphpmyfaqphpmyfaqMatch1.6.3
ORphpmyfaqphpmyfaqMatch1.6.4
ORphpmyfaqphpmyfaqMatch1.6.5
ORphpmyfaqphpmyfaqMatch1.6.6
ORphpmyfaqphpmyfaqMatch1.6.7
ORphpmyfaqphpmyfaqMatch1.6.8
ORphpmyfaqphpmyfaqMatch1.6.9
ORphpmyfaqphpmyfaqMatch1.6.10
ORphpmyfaqphpmyfaqMatch1.6.11
ORphpmyfaqphpmyfaqMatch1.6.12
ORphpmyfaqphpmyfaqMatch2.0.0
ORphpmyfaqphpmyfaqMatch2.0.1
ORphpmyfaqphpmyfaqMatch2.0.2
ORphpmyfaqphpmyfaqMatch2.0.3
ORphpmyfaqphpmyfaqMatch2.0.4
ORphpmyfaqphpmyfaqMatch2.0.5
ORphpmyfaqphpmyfaqMatch2.0.6
ORphpmyfaqphpmyfaqMatch2.0.7
ORphpmyfaqphpmyfaqMatch2.0.8
ORphpmyfaqphpmyfaqMatch2.0.9
ORphpmyfaqphpmyfaqMatch2.0.10
ORphpmyfaqphpmyfaqMatch2.0.11
ORphpmyfaqphpmyfaqMatch2.0.12
ORphpmyfaqphpmyfaqMatch2.0.13
ORphpmyfaqphpmyfaqMatch2.0.14
ORphpmyfaqphpmyfaqMatch2.0.15
ORphpmyfaqphpmyfaqMatch2.0.16
ORphpmyfaqphpmyfaqMatch2.0.17
ORphpmyfaqphpmyfaqMatch2.5.0
ORphpmyfaqphpmyfaqMatch2.5.1
ORphpmyfaqphpmyfaqMatch2.5.2
ORphpmyfaqphpmyfaqMatch2.5.3
ORphpmyfaqphpmyfaqMatch2.5.4
ORphpmyfaqphpmyfaqMatch2.5.5
ORphpmyfaqphpmyfaqMatch2.5.6
ORphpmyfaqphpmyfaqMatch2.5.7
ORphpmyfaqphpmyfaqMatch2.6.0
ORphpmyfaqphpmyfaqMatch2.6.1
ORphpmyfaqphpmyfaqMatch2.6.2
ORphpmyfaqphpmyfaqMatch2.6.3
ORphpmyfaqphpmyfaqMatch2.6.4
ORphpmyfaqphpmyfaqMatch2.6.5
ORphpmyfaqphpmyfaqMatch2.6.6
ORphpmyfaqphpmyfaqMatch2.6.7
ORphpmyfaqphpmyfaqMatch2.6.8
ORphpmyfaqphpmyfaqMatch2.6.9
ORphpmyfaqphpmyfaqMatch2.6.10
ORphpmyfaqphpmyfaqMatch2.6.11
ORphpmyfaqphpmyfaqMatch2.6.12
ORphpmyfaqphpmyfaqMatch2.6.13
ORphpmyfaqphpmyfaqMatch2.6.14
ORphpmyfaqphpmyfaqMatch2.6.15
ORphpmyfaqphpmyfaqMatch2.6.16
ORphpmyfaqphpmyfaqMatch2.6.17
ORphpmyfaqphpmyfaqMatch2.6.18
ORphpmyfaqphpmyfaqMatch2.7.0
ORphpmyfaqphpmyfaqMatch2.7.1
ORphpmyfaqphpmyfaqMatch2.7.2
ORphpmyfaqphpmyfaqMatch2.7.3
ORphpmyfaqphpmyfaqMatch2.7.4
ORphpmyfaqphpmyfaqMatch2.7.5
ORphpmyfaqphpmyfaqMatch2.7.6
ORphpmyfaqphpmyfaqMatch2.7.7
ORphpmyfaqphpmyfaqMatch2.7.8
ORphpmyfaqphpmyfaqMatch2.7.9
ORphpmyfaqphpmyfaqMatch2.8.0
ORphpmyfaqphpmyfaqMatch2.8.1
ORphpmyfaqphpmyfaqMatch2.8.2
ORphpmyfaqphpmyfaqMatch2.8.3
ORphpmyfaqphpmyfaqMatch2.8.4
Related
cve
cve
CVE-2014-0813
2014-02-14 16:55:13
cvelist
cvelist
CVE-2014-0813
2014-02-14 16:00:00
jvn
jvn
JVN#50943964: phpMyFAQ vulnerable to cross-site request forgery
2014-02-07 00:00:00
veracode
veracode
Cross-site Request Forgery (CSRF)
2017-07-14 10:51:25
prion
prion
Cross site request forgery (csrf)
2014-02-14 16:55:00
nessus
nessus
freebsd
freebsd
phpmyfaq -- multiple vulnerabilities
2014-02-04 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.1 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.4%
Related for NVD:CVE-2014-0813