3 matches found
CVE-2023-2428
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13...
CVE-2023-2428 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13...
CVE-2023-2428
This CVE refers to phpMyFAQ prior to version 3.1.13, where a stored XSS vulnerability exists in the name field of the add question module in thorsten/phpmyfaq. The underlying issue is a stored XSS in user-supplied input that is kept in the database and rendered without proper sanitization, enabli...