Cross-site Request Forgery (CSRF)

phpmyfaq/phpmyfaq is vulnerable to cross-site request forgery CSRF attacks. The library does not have CSRF protection for the phpmyfaq/admin/ajax.attachment.php and phpmyfaq/admin/att.main.php files, allowing a malicious user to send a request to the application to delete attachments...