Lucene search
@huntrdevCVELIST:CVE-2023-0312HistoryJan 15, 2023 - 12:00 a.m.
CVE-2023-0312 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
2023-01-1500:00:00
CWE-79
@huntrdev
www.cve.org
cve-2023-0312; cross-site scripting; thorsten/phpmyfaq; github repository; stored; xss; prior to 3.1.10
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
6.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.8%
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CNA Affected
[
{
"vendor": "thorsten",
"product": "thorsten/phpmyfaq",
"versions": [
{
"version": "unspecified",
"lessThan": "3.1.10",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
veracode
veracode
Cross-Site Scripting (XSS)
2023-01-27 08:03:59
cve
cve
CVE-2023-0312
2023-01-15 22:15:10
cnvd
cnvd
phpMyFAQ Cross-Site Scripting Vulnerability (CNVD-2023-04313)
2023-01-16 00:00:00
github
github
thorsten/phpmyfaq is vulnerable to cross-site scripting (XSS)
2023-01-16 00:30:24
nvd
nvd
CVE-2023-0312
2023-01-15 22:15:10
osv
osv
thorsten/phpmyfaq is vulnerable to cross-site scripting (XSS)
2023-01-16 00:30:24
CVE-2023-0312
2023-01-15 22:15:10
prion
prion
Cross site scripting
2023-01-15 22:15:00
huntr
huntr
Blind Stored XSS in administration panel
2022-12-15 23:57:03
openvas
openvas
phpMyFAQ < 3.1.10 Multiple Vulnerabilities
2023-01-16 00:00:00
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
6.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.8%
Related for CVELIST:CVE-2023-0312