2 matches found
CVE-2022-4408 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.9...
CVE-2022-4408
phpMyFAQ is affected up to version 3.1.8 with a stored Cross-site Scripting (XSS) vulnerability. The issue arises from handling user input stored in the database (GitHub repo thorsten/phpmyfaq). Impact is XSS in affected users’ browsers. Remediation: upgrade to version 3.1.9 or later; as a workar...