1769 matches found
Cross-Site Scripting (XSS)
phpmyfaq/phpmyfaq is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to a lack of input sanitization in the getNews function of News.php, which allows an attacker to inject and execute arbitrary JavaScript into the browser...
phpMyFAQ < 3.1.14 Multiple XSS Vulnerabilities
phpMyFAQ is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Cross-Site Scripting (XSS)
thorsten/phpmyfaq is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to a lack of user-input sanitization in the cleanUpContent function, which allows an attacker to inject and execute arbitrary JavaScript into the browser...
Cross-Site Scripting (XSS)
thorsten/phpmyfaq is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to a lack of content sanitization in the createFaqUrl function, which allows an attacker to inject and execute arbitrary JavaScript into the browser...
GHSA-974Q-4VVR-VG9C thorsten/phpmyfaq vulnerable to cross-site scripting
In thorsten/phpmyfaq prior to 3.1.14, when admins create a FAQ News, they can pass xss to the "text of the record" section...
thorsten/phpmyfaq vulnerable to cross-site scripting
In thorsten/phpmyfaq prior to 3.1.14, when admins create a FAQ News, they can pass xss to the "text of the record" section...
CVE-2023-2999
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
CVE-2023-2998
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
CVE-2023-2999
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
CVE-2023-2998
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
Cross site scripting
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
phpMyFAQ 跨站脚本漏洞
phpMyFAQ is a multi-language, fully database-driven FAQ system by the individual developer Thorsten Rinne. A cross-site scripting vulnerability exists in phpMyFAQ versions prior to 3.1.14. An attacker can exploit this vulnerability to perform cross-site scripting attacks...
CVE-2023-2999 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
phpMyFAQ 跨站脚本漏洞
phpMyFAQ is a multi-language, fully database-driven FAQ system by the individual developer Thorsten Rinne. A cross-site scripting vulnerability exists in phpMyFAQ versions prior to 3.1.14, which stems from the presence of a stored cross-site scripting XSS vulnerability...
CVE-2023-2998 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
CVE-2023-2999 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
CVE-2023-2998
The CVE-2023-2998 entry concerns a Stored XSS in thorsten/phpMyFAQ before version 3.1.14. According to the documents, when admins create a FAQ News item, user-supplied content in the “text of the record” can inject scripts, leading to cross-site script execution. Affected component: phpMyFAQ’s ba...
CVE-2023-2998 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
CVE-2023-2998 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
CVE-2023-2999
CVE-2023-2999 : A stored cross-site scripting (XSS) vulnerability affects phpMyFAQ