Shodan
Vulnerabilities
Vulnerable Software
Phpmyfaq:  >> Phpmyfaq  Security Vulnerabilities
CVE-2022-4407
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVSS Score
9.8
EPSS Score
0.061
Published
2022-12-11
CVE-2022-4408
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVSS Score
4.3
EPSS Score
0.002
Published
2022-12-11
CVE-2022-4409
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVSS Score
6.3
EPSS Score
0.002
Published
2022-12-11
CVE-2022-3765
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVSS Score
8.2
EPSS Score
0.004
Published
2022-10-31
CVE-2022-3766
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVSS Score
7.3
EPSS Score
0.186
Published
2022-10-31
CVE-2022-3754
Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVSS Score
7.5
EPSS Score
0.009
Published
2022-10-29
CVE-2022-3608
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-alpha.
CVSS Score
7.2
EPSS Score
0.005
Published
2022-10-19
CVE-2018-16650
phpMyFAQ before 2.9.11 allows CSRF.
CVSS Score
8.8
EPSS Score
0.002
Published
2018-09-07
CVE-2018-16651
The admin backend in phpMyFAQ before 2.9.11 allows CSV injection in reports.
CVSS Score
7.2
EPSS Score
0.008
Published
2018-09-07
CVE-2014-6047
phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to read arbitrary attachments by leveraging incorrect "download an attachment" permission checks.
CVSS Score
5.3
EPSS Score
0.047
Published
2018-08-28


Products
Pricing
Contact Us

Shodan ® - All rights reserved