4 matches found
CVE-2023-5867
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.2...
phpMyFAQ < 3.2.2 Multiple Vulnerabilities
phpMyFAQ is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyfaq:phpmyfaq"; if description...
CVE-2023-5867 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.2...
CVE-2023-5867
Summary (CVE-2023-5867) : Stored cross-site scripting vulnerability in the PHPMyFAQ project prior to version 3.2.2. Root cause identified in multiple sources as lack of proper filtering/escaping of user-supplied data in the FileName parameter of the file-attachment upload function, enabling injec...