GHSA-M8Q9-7V2F-QJX9 thorsten/phpmyfaq vulnerable to stored cross-site scripting (XSS) via artlang parameter

thorsten/phpmyfaq prior to 3.1.12 is vulnerable to stored cross-site scripting XSS because it fails to sanitize user input in the artlang parameter. This has been fixed in 3.1.12...

PT-2023-17308 · Thorsten · Phpmyfaq

Name of the Vulnerable Software and Affected Versions: thorsten/phpmyfaq versions prior to 3.1.12 Description: The issue is related to Cross-site Scripting XSS, specifically reflected and stored XSS. It occurs because the software fails to properly sanitize user input in the artlang parameter. Th...