CVE-2014-6049

Severity CVSS v4.0:
Pending analysis
Type:
CWE-285 Improper Authorization
Publication date:
28/08/2018
Last modified:
23/10/2018

Description

phpMyFAQ before 2.8.13 allows remote authenticated users with admin privileges to bypass authorization via a crafted instance ID parameter.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:phpmyfaq:phpmyfaq:*:*:*:*:*:*:*:* 2.8.13 (excluding)