Phpmyfaq: Security Vulnerabilities
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVSS Score
4.7
EPSS Score
0.001
Published
2023-01-15
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVSS Score
9.8
EPSS Score
0.046
Published
2022-12-11
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVSS Score
4.3
EPSS Score
0.002
Published
2022-12-11
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVSS Score
6.3
EPSS Score
0.002
Published
2022-12-11
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVSS Score
8.2
EPSS Score
0.001
Published
2022-10-31
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVSS Score
7.3
EPSS Score
0.047
Published
2022-10-31
Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-10-29
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-alpha.
CVSS Score
7.2
EPSS Score
0.005
Published
2022-10-19
phpMyFAQ before 2.9.11 allows CSRF.
CVSS Score
8.8
EPSS Score
0.002
Published
2018-09-07
The admin backend in phpMyFAQ before 2.9.11 allows CSV injection in reports.
CVSS Score
7.2
EPSS Score
0.009
Published
2018-09-07