phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th and December 15th 2010, contains an externally introduced modification (Trojan Horse) in the getTopTen method in inc/Faq.php, which allows remote attackers to execute arbitrary PHP code.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2010-12-17T18:00:00Z

Updated: 2024-09-17T02:11:36.082Z

Reserved: 2010-12-17T00:00:00Z

Link: CVE-2010-4558

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2010-12-17T19:00:26.557

Modified: 2010-12-20T05:00:00.000

Link: CVE-2010-4558

cve-icon Redhat

No data.