Description

SQL injection vulnerability in password.php in PhpMyFaq 1.5.1 allows remote attackers to modify SQL queries and gain administrator privileges via the user field.

Remediation

References

CVE-2005-3046

Related Vulnerabilities

Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0005)

WordPress Plugin Post Lists View Custom Cross-Site Scripting (1.7.1)

Drupal Resource Management Errors Vulnerability (CVE-2014-5266)

WordPress Plugin Podlove Podcast Publisher Multiple Vulnerabilities (2.3.15)

WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (3.2.9)

Severity

Medium

Classification

CVE-2005-3046 CWE-138

Tags

Missing Update Known Vulnerabilities