phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2017-15733 - Vulnerability Database

phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2017-15733

High

Reference: CVE-2017-15733

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-15733

Title: phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

In phpMyFAQ before 2.9.9 there is Cross-Site Request Forgery (CSRF) in admin/ajax.attachment.php and admin/att.main.php.