CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1756 matches found

Github Security Blog•added 2022/10/31 12:0 p.m.•24 views

phpMyFAQ vulnerable to stored Cross-site Scripting

phpMyFAQ prior to version 3.1.8 is vulnerable to stored Cross-site Scripting...

8.2CVSS5.5AI score0.00432EPSS

Exploits1References4Affected Software1

Github Security Blog•added 2022/10/31 12:0 p.m.•20 views

phpMyFAQ vulnerable to reflected Cross-site Scripting

phpMyFAQ prior to version 3.1.8 is vulnerable to reflected cross-site scripting...

7.3CVSS5.9AI score0.2358EPSS

Exploits3References5Affected Software1

OSV•added 2022/10/31 12:0 p.m.•16 views

GHSA-WR74-2V66-57PP phpMyFAQ vulnerable to stored Cross-site Scripting

phpMyFAQ prior to version 3.1.8 is vulnerable to stored Cross-site Scripting...

5.4CVSS5.6AI score0.00432EPSS

Exploits1References4

OSV•added 2022/10/31 12:0 p.m.•18 views

GHSA-MG5H-RHJQ-6V84 phpMyFAQ vulnerable to reflected Cross-site Scripting

phpMyFAQ prior to version 3.1.8 is vulnerable to reflected cross-site scripting...

6.1CVSS6.1AI score0.2358EPSS

Exploits3References5

NVD•added 2022/10/31 11:15 a.m.•14 views

CVE-2022-3766

Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8...

7.3CVSS0.2358EPSS

Exploits3References3

NVD•added 2022/10/31 11:15 a.m.•12 views

CVE-2022-3765

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.8...

8.2CVSS0.00432EPSS

Exploits1References2

ATTACKERKB•added 2022/10/31 11:15 a.m.•0 views

CVE-2022-3766

Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8...

7.3CVSS5.5AI score0.2358EPSS

Exploits3References4

CNNVD•added 2022/10/31 12:0 a.m.•1 views

phpMyFAQ 跨站脚本漏洞

phpMyFAQ is a multi-language, fully database-driven FAQ system by the individual developer Thorsten Rinne. A security vulnerability exists in phpMyFAQ versions prior to 3.1.8. An attacker exploited the vulnerability to perform cross-site scripting attacks...

8.2CVSS6.6AI score0.00432EPSS

Exploits1References3

OSV•added 2022/10/31 12:0 a.m.•14 views

CVE-2022-3766 Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq

Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8...

7.3CVSS7.4AI score0.2358EPSS

Exploits3References5

CVE•added 2022/10/31 12:0 a.m.•74 views

CVE-2022-3765

CVE-2022-3765 is a stored Cross-site Scripting (XSS) vulnerability affecting phpMyFAQ versions prior to 3.1.8 (repository: thorsten/phpmyfaq). The incident is described across multiple sources as storing unvalidated user input that can be delivered to other users, with the impacted component bein...

8.2CVSS5.5AI score0.00432EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2022/10/31 12:0 a.m.•9 views

CVE-2022-3766 Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq

Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8...

7.3CVSS6AI score0.2358EPSS

Exploits3References2

Cvelist•added 2022/10/31 12:0 a.m.•18 views

CVE-2022-3765 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.8...

8.2CVSS5.8AI score0.00432EPSS

Exploits1References2

Positive Technologies•added 2022/10/31 12:0 a.m.•1 views

PT-2022-24036

Name of the Vulnerable Software and Affected Versions phpMyFAQ versions prior to 3.1.8 Description The issue is related to Cross-site Scripting XSS - Reflected. This means an attacker can inject malicious scripts into a website, which will then be executed by the user's browser. The estimated...

7.3CVSS6.9AI score0.2358EPSS

Exploits3References10

Positive Technologies•added 2022/10/31 12:0 a.m.•2 views

PT-2022-24035 · Phpmyfaq · Phpmyfaq

Name of the Vulnerable Software and Affected Versions: phpMyFAQ versions prior to 3.1.8 Description: The issue is related to stored Cross-site Scripting XSS in the phpMyFAQ repository. This type of attack involves an attacker injecting malicious scripts into a website, which are then stored on th...

8.2CVSS6AI score0.00432EPSS

Exploits1References8

OSV•added 2022/10/31 12:0 a.m.•16 views

CVE-2022-3765 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.8...

8.2CVSS7.4AI score0.00432EPSS

Exploits1References4

CNNVD•added 2022/10/31 12:0 a.m.•1 views

phpMyFAQ 跨站脚本漏洞

phpMyFAQ is a multi-language, fully database-driven FAQ system by the individual developer Thorsten Rinne. A security vulnerability exists in phpMyFAQ versions prior to 3.1.8, which stems from the presence of cross-site scripting XSS...

7.3CVSS6.7AI score0.2358EPSS

Exploits3References5

Vulnrichment•added 2022/10/31 12:0 a.m.•4 views

CVE-2022-3765 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.8...

8.2CVSS5.3AI score0.00432EPSS

Exploits1References2

CVE•added 2022/10/31 12:0 a.m.•77 views

CVE-2022-3766

CVE-2022-3766 affects phpMyFAQ versions prior to 3.1.8. The nuclei template and related sources describe a reflected Cross-Site Scripting (XSS) vulnerability in the search functionality, where user input is not properly sanitized, allowing injected JavaScript to execute in other users’ browsers. ...

7.3CVSS6.1AI score0.2358EPSS

Exploits3References3Affected Software1

Github Security Blog•added 2022/10/29 7:0 p.m.•31 views

phpMyFAQ contains Weak Password Requirements

phpMyFAQ prior to version 3.1.8 has Weak Password Requirements. Version 3.1.8 introduces an eight-character minimum password length...

9.8CVSS9.1AI score0.00921EPSS

Exploits1References4Affected Software1

OSV•added 2022/10/29 7:0 p.m.•27 views

GHSA-2RR3-RV49-P42F phpMyFAQ contains Weak Password Requirements

phpMyFAQ prior to version 3.1.8 has Weak Password Requirements. Version 3.1.8 introduces an eight-character minimum password length...

9.8CVSS9.5AI score0.00921EPSS

Exploits1References4