phpmyfaq is vulnerable to Authentication Bypass. The vulnerability is due to a Captcha
bypass which allows an attacker to send unlimited comments due to the faulty logic in the checkCaptchaCode
function in fileCaptcha.php
, resulting in authentication bypass.
CPE | Name | Operator | Version |
---|---|---|---|
thorsten/phpmyfaq | le | 3.1.11 | |
phpmyfaq/phpmyfaq | le | 3.1.11 | |
thorsten/phpmyfaq | le | 3.1.11 | |
phpmyfaq/phpmyfaq | le | 3.1.11 |