Описание
Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to hijack the authentication of arbitrary users for requests that modify settings.
Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to hijack the authentication of arbitrary users for requests that modify settings.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-0813
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90963
- http://jvn.jp/en/jp/JVN50943964/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2014-000016
- http://osvdb.org/102939
- http://secunia.com/advisories/56006
- http://www.phpmyfaq.de/advisory_2014-02-04.php
- http://www.securityfocus.com/bid/65368
Связанные уязвимости
nvd
почти 12 лет назад
Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to hijack the authentication of arbitrary users for requests that modify settings.