Shodan
Vulnerabilities
Vulnerable Software
Phpmyfaq:  >> Phpmyfaq  >> 2.8.22  Security Vulnerabilities
CVE-2022-3754
Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVSS Score
7.5
EPSS Score
0.03
Published
2022-10-29
CVE-2022-3608
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-alpha.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-10-19
CVE-2018-16650
phpMyFAQ before 2.9.11 allows CSRF.
CVSS Score
8.8
EPSS Score
0.002
Published
2018-09-07
CVE-2018-16651
The admin backend in phpMyFAQ before 2.9.11 allows CSV injection in reports.
CVSS Score
7.2
EPSS Score
0.009
Published
2018-09-07
CVE-2017-15808
In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-10-23
CVE-2017-15809
In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-10-23
CVE-2017-15727
In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via an HTML attachment.
CVSS Score
5.4
EPSS Score
0.002
Published
2017-10-22
CVE-2017-15728
In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via metaDescription or metaKeywords.
CVSS Score
4.8
EPSS Score
0.002
Published
2017-10-22
CVE-2017-15729
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for adding a glossary.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-10-22
CVE-2017-15730
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.ratings.php.
CVSS Score
8.8
EPSS Score
0.004
Published
2017-10-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved