4 matches found
CVE-2023-3469 Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq
Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.2...
CVE-2023-3469 Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq
Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.2...
CVE-2023-3469
The CVE-2023-3469 entry concerns phpMyFAQ (thorsten/phpmyfaq) prior to 3.2.0-beta.2, which is vulnerable to a reflected cross-site scripting (XSS) flaw when restoring a backup. The issue arises from how exception messages may include unencoded parts of the crafted backup file, allowing JavaScript...
phpmyFAQ < 3.2.0-beta.2 XSS Vulnerability
phpMyFAQ is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyfaq:phpmyfaq"...