phpmyfaq is vulnerable to Business Logic Flaws. The vulnerability exists in record.add.php
due to improper user permission checks which allows an authenticated attacker with edit-only permissions to add and delete categories or add FAQs.
CPE | Name | Operator | Version |
---|---|---|---|
thorsten/phpmyfaq | le | 3.1.11 | |
phpmyfaq/phpmyfaq | le | 3.1.11 | |
thorsten/phpmyfaq | le | 3.1.11 | |
phpmyfaq/phpmyfaq | le | 3.1.11 |