Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpmyfaq vulnerabilities and exploits
(subscribe to this query)
4.7
CVSSv3
CVE-2023-1754
Improper Neutralization of Input During Web Page Generation in GitHub repository thorsten/phpmyfaq before 3.1.12.
Phpmyfaq Phpmyfaq
5.4
CVSSv3
CVE-2023-1755
Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq before 3.1.12.
Phpmyfaq Phpmyfaq
5.4
CVSSv3
CVE-2023-1756
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq before 3.1.12.
Phpmyfaq Phpmyfaq
5.4
CVSSv3
CVE-2023-1757
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq before 3.1.12.
Phpmyfaq Phpmyfaq
5.4
CVSSv3
CVE-2023-1758
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository thorsten/phpmyfaq before 3.1.12.
Phpmyfaq Phpmyfaq
5.4
CVSSv3
CVE-2023-1761
Cross-site Scripting in GitHub repository thorsten/phpmyfaq before 3.1.12.
Phpmyfaq Phpmyfaq
8.8
CVSSv3
CVE-2017-15735
In phpMyFAQ prior to 2.9.9, there is Cross-Site Request Forgery (CSRF) for modifying a glossary.
Phpmyfaq Phpmyfaq
8.8
CVSSv3
CVE-2017-15808
In phpMyFaq prior to 2.9.9, there is CSRF in admin/ajax.config.php.
Phpmyfaq Phpmyfaq
6.5
CVSSv3
CVE-2024-22202
phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. phpMyFAQ's user removal page allows an malicious user to spoof another user's detail, and in turn make a compelling phishing case for removing another user's acco...
Phpmyfaq Phpmyfaq
6.5
CVSSv3
CVE-2024-22208
phpMyFAQ is an Open Source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. The 'sharing FAQ' functionality allows any unauthenticated actor to misuse the phpMyFAQ application to send arbitrary emails to a large range of targets. The phpMyFAQ ...
Phpmyfaq Phpmyfaq
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »