Shodan
Vulnerabilities
Vulnerable Software
Phpmyfaq:  >> Phpmyfaq  >> 1.3.6  Security Vulnerabilities
CVE-2017-15808
In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-10-23
CVE-2017-15809
In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-10-23
CVE-2017-15727
In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via an HTML attachment.
CVSS Score
5.4
EPSS Score
0.002
Published
2017-10-22
CVE-2017-15728
In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via metaDescription or metaKeywords.
CVSS Score
4.8
EPSS Score
0.002
Published
2017-10-22
CVE-2017-15729
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for adding a glossary.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-10-22
CVE-2017-15730
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.ratings.php.
CVSS Score
8.8
EPSS Score
0.004
Published
2017-10-22
CVE-2017-15731
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.adminlog.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-10-22
CVE-2017-15732
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/news.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-10-22
CVE-2017-15733
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/ajax.attachment.php and admin/att.main.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-10-22
CVE-2017-15734
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.main.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-10-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved