Description In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php. Remediation References CVE-2017-15808 Related Vulnerabilities WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Cross-Site Scripting (5.10.1) WordPress 4.6.x Cross-Site Request Forgery (4.6 - 4.6.13) Zope Web Application Server CVE-2011-2528 Vulnerability (CVE-2011-2528) WordPress Plugin Donation Thermometer Cross-Site Scripting (2.1.2) Java Unspesificed Vulnerability (CVE-2018-3183) Severity High Classification CVE-2017-15808 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities