Lucene search
@huntrdevCVELIST:CVE-2022-3608HistoryOct 19, 2022 - 12:00 a.m.
CVE-2022-3608 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
2022-10-1900:00:00
CWE-79
@huntrdev
www.cve.org
5
cve-2022-3608
stored
github
repository
xss
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0.001
Percentile
40.5%
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-alpha.
CNA Affected
[
{
"vendor": "thorsten",
"product": "thorsten/phpmyfaq",
"versions": [
{
"version": "unspecified",
"lessThan": "3.2.0-alpha",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
openvas
openvas
phpMyFAQ < 3.2.0 XSS Vulnerability
2022-11-03 00:00:00
github
github
phpMyFAQ vulnerable to Cross-site Scripting
2022-10-19 19:00:24
nvd
nvd
CVE-2022-3608
2022-10-19 13:15:08
prion
prion
Cross site scripting
2022-10-19 13:15:00
osv
osv
phpMyFAQ vulnerable to Cross-site Scripting
2022-10-19 19:00:24
CVE-2022-3608
2022-10-19 13:15:08
cve
cve
CVE-2022-3608
2022-10-19 13:15:08
veracode
veracode
Cross-Site Scripting (XSS)
2022-10-20 04:29:37
huntr
huntr
Stored XSS and possible RCE/LFI in case of misconfiguration
2022-10-03 11:10:31
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0.001
Percentile
40.5%
Related for CVELIST:CVE-2022-3608