Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpmyfaq phpmyfaq vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-22202
phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. phpMyFAQ's user removal page allows an malicious user to spoof another user's detail, and in turn make a compelling phishing case for removing another user's acco...
Phpmyfaq Phpmyfaq
NA
CVE-2024-22208
phpMyFAQ is an Open Source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. The 'sharing FAQ' functionality allows any unauthenticated actor to misuse the phpMyFAQ application to send arbitrary emails to a large range of targets. The phpMyFAQ ...
Phpmyfaq Phpmyfaq
6.5
CVSSv2
CVE-2014-6045
SQL injection vulnerability in phpMyFAQ prior to 2.8.13 allows remote authenticated users with certain permissions to execute arbitrary SQL commands via vectors involving the restore function.
Phpmyfaq Phpmyfaq
1 EDB exploit
6.8
CVSSv2
CVE-2018-16650
phpMyFAQ prior to 2.9.11 allows CSRF.
Phpmyfaq Phpmyfaq
9
CVSSv2
CVE-2018-16651
The admin backend in phpMyFAQ prior to 2.9.11 allows CSV injection in reports.
Phpmyfaq Phpmyfaq
NA
CVE-2022-3766
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq before 3.1.8.
Phpmyfaq Phpmyfaq
NA
CVE-2023-5227
Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq before 3.1.8.
Phpmyfaq Phpmyfaq
NA
CVE-2023-5317
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq before 3.1.18.
Phpmyfaq Phpmyfaq
NA
CVE-2023-5319
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq before 3.1.18.
Phpmyfaq Phpmyfaq
NA
CVE-2022-3765
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq before 3.1.8.
Phpmyfaq Phpmyfaq
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »