Description

SQL injection vulnerability in password.php in PhpMyFaq 1.5.1 allows remote attackers to modify SQL queries and gain administrator privileges via the user field.

Remediation

References

CVE-2005-3046

Related Vulnerabilities

MySQL CVE-2022-21374 Vulnerability (CVE-2022-21374)

phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1759)

Apache HTTP Server Other Vulnerability (CVE-2007-1862)

MySQL CVE-2013-5807 Vulnerability (CVE-2013-5807)

WordPress Plugin Disqus Comment System Cross-Site Scripting (2.68)

Severity

Medium

Classification

CVE-2005-3046 CWE-138

Tags

Missing Update Known Vulnerabilities