Lucene search
K

6 matches found

Packet Storm
Packet Storm
added 2025/04/16 12:0 a.m.373 views

📄 phpMyFAQ 3.1.7 Cross Site Scripting

phpMyFAQ version 3.1.7 suffers from a cross site scripting vulnerability. Exploit Title: phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting XSS Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/thorsten/phpMyFAQ Software Link: https://github.com/thorsten/phpMyFAQ Versio...

9.8CVSS7.5AI score0.04381EPSS
Exploits2
Exploit DB
Exploit DB
added 2025/04/16 12:0 a.m.437 views

phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)

Exploit Title: phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting XSS Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/thorsten/phpMyFAQ Software Link: https://github.com/thorsten/phpMyFAQ Version: 3.1.7 Tested on: Ubuntu Windows CVE : CVE-2022-4407 PoC: Get:...

9.8CVSS7.4AI score0.04381EPSS
Exploits2
Circl
Circl
added 2022/12/11 6:20 p.m.7 views

CVE-2022-4407

creationtimestamp| type| source ---|---|--- 2022-12-11 18:20:11+00:00| seen| https://t.me/cibsecurity/54262 2025-04-17 21:02:30+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lmzyvyclmv2e...

9.8CVSS7.1AI score0.04381EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2022/12/11 12:0 a.m.11 views

CVE-2022-4407 Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq

Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9...

9.8CVSS6.1AI score0.04381EPSS
Exploits2References2
Cvelist
Cvelist
added 2022/12/11 12:0 a.m.32 views

CVE-2022-4407 Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq

Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9...

9.8CVSS6.4AI score0.04381EPSS
Exploits2References2
CVE
CVE
added 2022/12/11 12:0 a.m.89 views

CVE-2022-4407

CVE-2022-4407 affects phpMyFAQ versions before 3.1.9. The vulnerability is a reflected XSS in the admin area (e.g., action parameter in phpmyfaq/admin/index.php), caused by unsanitized user input being echoed into HTML attributes. Multiple sources (NVD entry, Exploit-DB PoC for 3.1.7, OSV/CIRCL s...

9.8CVSS6.2AI score0.04381EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder