6 matches found
📄 phpMyFAQ 3.1.7 Cross Site Scripting
phpMyFAQ version 3.1.7 suffers from a cross site scripting vulnerability. Exploit Title: phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting XSS Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/thorsten/phpMyFAQ Software Link: https://github.com/thorsten/phpMyFAQ Versio...
phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)
Exploit Title: phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting XSS Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/thorsten/phpMyFAQ Software Link: https://github.com/thorsten/phpMyFAQ Version: 3.1.7 Tested on: Ubuntu Windows CVE : CVE-2022-4407 PoC: Get:...
CVE-2022-4407
creationtimestamp| type| source ---|---|--- 2022-12-11 18:20:11+00:00| seen| https://t.me/cibsecurity/54262 2025-04-17 21:02:30+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lmzyvyclmv2e...
CVE-2022-4407 Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq
Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9...
CVE-2022-4407 Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq
Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9...
CVE-2022-4407
CVE-2022-4407 affects phpMyFAQ versions before 3.1.9. The vulnerability is a reflected XSS in the admin area (e.g., action parameter in phpmyfaq/admin/index.php), caused by unsanitized user input being echoed into HTML attributes. Multiple sources (NVD entry, Exploit-DB PoC for 3.1.7, OSV/CIRCL s...