AI Score
Confidence
High
EPSS
Percentile
53.7%
phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to read arbitrary attachments by leveraging incorrect “download an attachment” permission checks.
techdefencelabs.com/security-advisories.html
www.phpmyfaq.de/security/advisory-2014-09-16