Vulnerabilities (CVE)

Filtered by vendor Phpmyfaq Subscribe
Total 116 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-0310 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2023-0309 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2023-0308 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2023-0307 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 9.8 CRITICAL
Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2023-0306 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2022-4409 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 7.5 HIGH
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVE-2022-4408 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVE-2022-4407 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 6.1 MEDIUM
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVE-2022-3766 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 6.1 MEDIUM
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVE-2022-3765 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVE-2022-3754 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 9.8 CRITICAL
Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVE-2022-3608 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A 8.4 HIGH
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-alpha.
CVE-2018-16651 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 9.0 HIGH 7.2 HIGH
The admin backend in phpMyFAQ before 2.9.11 allows CSV injection in reports.
CVE-2018-16650 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 6.8 MEDIUM 8.8 HIGH
phpMyFAQ before 2.9.11 allows CSRF.
CVE-2017-7579 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
inc/PMF/Faq.php in phpMyFAQ before 2.9.7 has XSS in the question field.
CVE-2017-15809 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag.
CVE-2017-15808 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 6.8 MEDIUM 8.8 HIGH
In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php.
CVE-2017-15735 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 6.8 MEDIUM 8.8 HIGH
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for modifying a glossary.
CVE-2017-15734 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 6.8 MEDIUM 8.8 HIGH
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.main.php.
CVE-2017-15733 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 6.8 MEDIUM 8.8 HIGH
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/ajax.attachment.php and admin/att.main.php.