In phpMyFAQ prior to 2.9.9, there is Cross-Site Request Forgery (CSRF) for modifying a glossary.
phpmyfaq phpmyfaq