Description
Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to hijack the authentication of arbitrary users for requests that modify settings.
Remediation
References
Related Vulnerabilities
WordPress Plugin Custom Background 'uploadify.php' Arbitrary File Upload (1.01)
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-28977)
MySQL CVE-2021-35623 Vulnerability (CVE-2021-35623)
WordPress Plugin WP Live Chat Support Pro Arbitrary File Upload (8.0.06)
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2005-4875)