In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.ratings.php.
References
Link | Resource |
---|---|
https://github.com/thorsten/phpMyFAQ/commit/cce47f94375bb0102ab4f210672231dbb854dd0d | Patch Third Party Advisory |
https://www.exploit-db.com/exploits/43064/ | Exploit Third Party Advisory VDB Entry |
Configurations
Information
Published : 2017-10-22 11:29
Updated : 2019-03-14 07:06
NVD link : CVE-2017-15730
Mitre link : CVE-2017-15730
JSON object : View
CWE
CWE-352
Cross-Site Request Forgery (CSRF)
Products Affected
phpmyfaq
- phpmyfaq