phpMyFAQ is vulnerable to cross-site request forgery. An attacker is able activate any user on behalf of the administrator by tricking the victim into visiting a malicious site.
CPE | Name | Operator | Version |
---|---|---|---|
phpmyfaq/phpmyfaq | le | 2.9.10 | |
thorsten/phpmyfaq | le | 2.9.10 |