Cross-Site Scripting (XSS)

thorsten/phpmyfaq is vulnerable to Cross-Site Scripting. The vulnerability is due to ajax.tags.php and tags.js having improper tagName sanitization for. This can lead to Stored XSS if a tag name contains malicious JavaScript code...