phpmyfaq is vulnerable to cross-site request forgery (CSRF) attacks. The application does not have CSRF protection for the phpmyfaq/admin/glossary.main.php
file, allowing a malicious user to pass a request to the application to overwrite the current glossary.