Description
SQL injection vulnerability in phpMyFAQ 1.4 and 1.5 allows remote attackers to add FAQ records to the database via the username field in forum messages.
Remediation
References
Related Vulnerabilities
Django Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9014)
WordPress Plugin MasterStudy LMS-for Online Courses and Education Local File Inclusion (3.3.3)
WordPress Plugin Import any XML or CSV File to WordPress Pro Multiple Vulnerabilities (4.1.1)
MediaWiki Insertion of Sensitive Information into Log File Vulnerability (CVE-2024-40598)
Internet Information Services Other Vulnerability (CVE-2003-0226)