3 matches found
CVE-2024-8513
The QA Analytics – Web Analytics Tool with Heatmaps & Session Replay Across All Pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxsavepluginconfig function in all versions up to, and including, 4.1.0.0. This makes it possibl...
Cross-site request forgery vulnerability in phpMyFaq admin/ajax.config.php file
phpMyFAQ is phpMyFAQ team developed a set of open source fully database-driven FAQ question and answer system . The system supports multiple languages, multiple databases, etc., and includes modules such as content management system and community. A cross-site request forgery vulnerability exists...
Cross site request forgery (csrf)
In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php...