2018-08-28 17:00:00
mitre
PUBLISHED
phpMyFAQ before 2.8.13 allows remote authenticated users with admin privileges to bypass authorization via a crafted instance ID parameter.