Description In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for modifying a glossary. Remediation References CVE-2017-15735 Related Vulnerabilities SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-1861) Drupal Improper Access Control Vulnerability (CVE-2016-5385) Oracle JRE CVE-2024-20952 Vulnerability (CVE-2024-20952) Joomla! Core 3.0.x Information Disclosure (3.0.0 - 3.0.2) MongoDb Uncontrolled Resource Consumption Vulnerability (CVE-2016-3104) Severity High Classification CVE-2017-15735 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities