Lucene search
@huntrdevCVELIST:CVE-2023-2999HistoryMay 31, 2023 - 12:00 a.m.
CVE-2023-2999 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
2023-05-3100:00:00
CWE-79
@huntrdev
www.cve.org
1
cve-2023-2999
cross-site scripting
stored
github
repository
thorsten/phpmyfaq
3.1.14
CVSS3
6.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:H
EPSS
0.001
Percentile
32.5%
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14.
CNA Affected
[
{
"vendor": "thorsten",
"product": "thorsten/phpmyfaq",
"versions": [
{
"version": "unspecified",
"lessThan": "3.1.14",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
huntr
huntr
Stored XSS bypass in "FAQ"
2023-05-02 09:55:40
nvd
nvd
CVE-2023-2999
2023-05-31 01:15:43
cve
cve
CVE-2023-2999
2023-05-31 01:15:43
osv
osv
CVE-2023-2999
2023-05-31 01:15:43
thorsten/phpmyfaq vulnerable to cross-site scripting
2023-05-31 03:30:15
prion
prion
Cross site scripting
2023-05-31 01:15:00
veracode
veracode
Cross-Site Scripting (XSS)
2023-06-13 13:13:08
github
github
thorsten/phpmyfaq vulnerable to cross-site scripting
2023-05-31 03:30:15
openvas
openvas
phpMyFAQ < 3.1.14 Multiple XSS Vulnerabilities
2023-06-01 00:00:00
CVSS3
6.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:H
EPSS
0.001
Percentile
32.5%
Related for CVELIST:CVE-2023-2999