Description
SQL injection vulnerability in phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to execute arbitrary SQL commands via vectors involving the restore function.
Remediation
References
Related Vulnerabilities
WordPress Plugin Google Forms Cross-Site Scripting (0.84)
Joomla! Core 1.5.x Arbitrary File Upload (1.5.0 - 1.5.15)
Atlassian Jira Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-16865)
WordPress Plugin Nmedia WordPress Member Conversation 'doupload.php' Arbitrary File Upload (1.3)
Python Integer Overflow or Wraparound Vulnerability (CVE-2018-20406)