28 matches found
CVE-2024-2070
A vulnerability classified as problematic was found in SourceCodester FAQ Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /endpoint/add-faq.php. The manipulation of the argument question/answer leads to cross site scripting. The attack can be launched...
CVE-2024-2071
A vulnerability, which was classified as problematic, has been found in SourceCodester FAQ Management System 1.0. Affected by this issue is some unknown functionality of the component Update FAQ. The manipulation of the argument Frequently Asked Question leads to cross site scripting. The attack...
CVE-2024-2069
A vulnerability classified as critical has been found in SourceCodester FAQ Management System 1.0. Affected is an unknown function of the file /endpoint/delete-faq.php. The manipulation of the argument faq leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-57425
A Stored Cross-Site Scripting XSS vulnerability in SourceCodester FAQ Management System 1.0 allows an authenticated attacker to inject malicious JavaScript into the 'question' and 'answer' fields via the update-faq.php endpoint...
CVE-2025-57425
A Stored Cross-Site Scripting XSS vulnerability in SourceCodester FAQ Management System 1.0 allows an authenticated attacker to inject malicious JavaScript into the 'question' and 'answer' fields via the update-faq.php endpoint...
PT-2025-34788 · Sourcecodester · Faq Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester FAQ Management System version 1.0 Description: A Stored Cross-Site Scripting XSS vulnerability exists in the FAQ Management System. An authenticated attacker can inject malicious JavaScript into the question and answer fields...
CVE-2024-27719
A cross site scripting XSS vulnerability in rems FAQ Management System v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the Frequently Asked Question field in the Add FAQ function...
CVE-2024-27719
A cross site scripting XSS vulnerability in rems FAQ Management System v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the Frequently Asked Question field in the Add FAQ function...
CVE-2024-27719
Summary of CVE-2024-27719 : A cross-site scripting (XSS) vulnerability affects the rems FAQ Management System v1.0 (Add FAQ). Attackers can craft payloads in the Frequently Asked Question field to obtain sensitive information. Public sources consistently reference this issue in rems FAQ Managemen...
CVE-2024-27719
A cross site scripting XSS vulnerability in rems FAQ Management System v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the Frequently Asked Question field in the Add FAQ function...
FAQ Management System 安全漏洞
FAQ Management System is a Frequently Asked Questions Management System by Remy Andrade Personal Developer. A security vulnerability exists in FAQ Management System version v.1.0, which stems from a cross-site scripting XSS vulnerability that could allow a remote attacker to obtain sensitive...
CVE-2024-2071
A vulnerability, which was classified as problematic, has been found in SourceCodester FAQ Management System 1.0. Affected by this issue is some unknown functionality of the component Update FAQ. The manipulation of the argument Frequently Asked Question leads to cross site scripting. The attack...
Cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester FAQ Management System 1.0. Affected by this issue is some unknown functionality of the component Update FAQ. The manipulation of the argument Frequently Asked Question leads to cross site scripting. The attack...
CVE-2024-2071
The CVE-2024-2071 entry concerns SourceCodester FAQ Management System 1.0. The vulnerability lies in the Update FAQ component where manipulating the Frequently Asked Question parameter triggers cross-site scripting (XSS). The attack surface is remote, with the impact limited to confidentiality an...
CVE-2024-2071 SourceCodester FAQ Management System Update FAQ cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester FAQ Management System 1.0. Affected by this issue is some unknown functionality of the component Update FAQ. The manipulation of the argument Frequently Asked Question leads to cross site scripting. The attack...
CVE-2024-2071 SourceCodester FAQ Management System Update FAQ cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester FAQ Management System 1.0. Affected by this issue is some unknown functionality of the component Update FAQ. The manipulation of the argument Frequently Asked Question leads to cross site scripting. The attack...
CVE-2024-2069
A vulnerability classified as critical has been found in SourceCodester FAQ Management System 1.0. Affected is an unknown function of the file /endpoint/delete-faq.php. The manipulation of the argument faq leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2024-2070 SourceCodester FAQ Management System add-faq.php cross site scripting
A vulnerability classified as problematic was found in SourceCodester FAQ Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /endpoint/add-faq.php. The manipulation of the argument question/answer leads to cross site scripting. The attack can be launched...
CVE-2024-2070 SourceCodester FAQ Management System add-faq.php cross site scripting
A vulnerability classified as problematic was found in SourceCodester FAQ Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /endpoint/add-faq.php. The manipulation of the argument question/answer leads to cross site scripting. The attack can be launched...
CVE-2024-2070
The CVE-2024-2070 entry affects SourceCodester FAQ Management System 1.0, with an XSS vulnerability in /endpoint/add-faq.php where manipulating the question/answer parameter enables cross-site scripting. The issue can be exploited remotely and the exploit has been disclosed publicly. No specific ...