1764 matches found
Cross site scripting
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.18...
CVE-2023-5320 Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq
Cross-site Scripting XSS - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18...
CVE-2023-5320 Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq
Cross-site Scripting XSS - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18...
CVE-2023-5320
CVE-2023-5320 is a DOM-based XSS in phpMyFAQ prior to version 3.1.18. The vulnerability affects the web interface’s client-side DOM handling, allowing a crafted input to execute arbitrary scripts in a victim’s browser. Exploitation requires user interaction (UI:R) and is scoped to the affected ap...
CVE-2023-5320 Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq
Cross-site Scripting XSS - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18...
CVE-2023-5316 Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq
Cross-site Scripting XSS - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18...
CVE-2023-5316 Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq
Cross-site Scripting XSS - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18...
CVE-2023-5317 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.18...
CVE-2023-5317
CVE-2023-5317 is a stored Cross-site Scripting (XSS) vulnerability in the phpMyFAQ project (thorsten/phpmyfaq) prior to version 3.1.18. The issue affects the web-facing input handling that can lead to script execution when data is stored and later rendered. Multiple advisories corroborate this XS...
CVE-2023-5316
Affected software: phpMyFAQ prior to 3.1.18 (GitHub repo thorsten/phpmyfaq). Vulnerability: Cross-site Scripting (XSS) via DOM manipulation. All concrete entries describe a DOM-based XSS vector impacting user input handling in versions before 3.1.18. Impact: Enables execution of arbitrary scripts...
CVE-2023-5317 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.18...
CVE-2023-5319
CVE-2023-5319 concerns a stored Cross-site Scripting (XSS) vulnerability in the PHPMyFAQ project prior to version 3.1.18. The affected software is phpMyFAQ (thorsten/phpmyfaq) and the underlying issue is stored input being reflected in user-visible pages without proper sanitization, enabling an a...
CVE-2023-5319 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.18...
CVE-2023-5319 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.18...
CVE-2023-5227
CVE-2023-5227 targets thorsten/phpmyfaq prior to version 3.1.8, enabling unrestricted upload of files with dangerous types in the image/file upload workflow. Connected data corroborate related issues across feeds, with some sources indicating a fix at 3.1.18 and others listing 3.1.8 as the affect...
CVE-2023-5227 Unrestricted Upload of File with Dangerous Type in thorsten/phpmyfaq
Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq prior to 3.1.8...
CVE-2023-5227 Unrestricted Upload of File with Dangerous Type in thorsten/phpmyfaq
Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq prior to 3.1.8...
phpMyFAQ Cross-Site Scripting Vulnerability
phpMyFAQ is a multi-language, fully database-driven FAQ system by the individual developer Thorsten Rinne. A cross-site scripting vulnerability exists in phpMyFAQ versions prior to 3.1.18. An attacker can exploit this vulnerability to perform cross-site scripting attacks...
phpMyFAQ Cross-Site Scripting Vulnerability
phpMyFAQ is a multi-language, fully database-driven FAQ system by the individual developer Thorsten Rinne. A cross-site scripting vulnerability exists in phpMyFAQ versions prior to 3.1.18. An attacker can exploit this vulnerability to perform cross-site scripting attacks...
phpMyFAQ Cross-Site Scripting Vulnerability
phpMyFAQ is a multi-language, fully database-driven FAQ system by the individual developer Thorsten Rinne. A cross-site scripting vulnerability exists in phpMyFAQ versions prior to 3.1.18. An attacker can exploit this vulnerability to perform cross-site scripting attacks...