CVE-2025-57425

A Stored Cross-Site Scripting XSS vulnerability in SourceCodester FAQ Management System 1.0 allows an authenticated attacker to inject malicious JavaScript into the 'question' and 'answer' fields via the update-faq.php endpoint...

SourceCodester FAQ Management System 安全漏洞

SourceCodester FAQ Management System is an open source question and answer management system from SourceCodester. A security vulnerability exists in version 1.0 of the SourceCodester FAQ Management System, which stems from the update-faq.php endpoint that does not clean up the question and answer...

MaNGOSWebV4 cross-site scripting vulnerability (CNVD-2017-03504)

MaNGOSWeb is a World of Warcraft private server CMS. maNGOSWebV4 is one of the versions. A cross-site scripting vulnerability exists in the inc/admin/templatefiles/admin.faq.php page of MaNGOSWebV4. An attacker can exploit this vulnerability to inject arbitrary web script or HTML...

Sql injection

SQL injection vulnerability in faq.php in vBulletin 3.7.0 Gold allows remote attackers to execute arbitrary SQL commands via the q parameter in a search action...