Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ishaq mohammed vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2017-146192
phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability where an attacker can embed malicious script code in the title of the faq.
NA
CVE-2017-146191
phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability where an attacker can embed malicious script code in the title of the faq.
5.4
CVSSv3
CVE-2017-15284
Cross-Site Scripting exists in OctoberCMS 1.0.425 (aka Build 425), allowing a least privileged user to upload an SVG file containing malicious code as the Avatar for the profile. When this is opened by the Admin, it causes JavaScript execution in the context of the Admin account.
Octobercms October 1.0.425
1 EDB exploit
NA
CVE-2017-152841
OctoberCMS version 1.0.425 suffers from a stored cross site scripting vulnerability.
NA
CVE-2017-152842
OctoberCMS version 1.0.425 suffers from a stored cross site scripting vulnerability.
NA
CVE-2017-146181
phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability.
NA
CVE-2017-146182
phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability.
4.8
CVSSv3
CVE-2017-14618
Cross-site scripting (XSS) vulnerability in inc/PMF/Faq.php in phpMyFAQ up to and including 2.9.8 allows remote malicious users to inject arbitrary web script or HTML via the Questions field in an "Add New FAQ" action.
Phpmyfaq Phpmyfaq
1 EDB exploit
6.1
CVSSv3
CVE-2017-14619
Cross-site scripting (XSS) vulnerability in phpMyFAQ up to and including 2.9.8 allows remote malicious users to inject arbitrary web script or HTML via the "Title of your FAQ" field in the Configuration Module.
Phpmyfaq Phpmyfaq
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2