CVE-2017-15732

HIGH

phpMyFAQ < 2.9.8 - Cross-Site Request Forgery in admin/news.php

Title source: llm

In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/news.php.

Core 1

Core References

Patch, Third Party Advisory x_refsource_confirm

CVSS v3 8.8

EPSS 0.0058

EPSS Percentile 43.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-352

Status published

Products (1)

phpmyfaq/phpmyfaq < 2.9.8

Published Oct 22, 2017

Tracked Since Feb 18, 2026