phpMyFAQ 跨站脚本漏洞

phpMyFAQ is a multilingual, fully database-driven FAQ system by the individual developer Thorsten Rinne. A cross-site scripting vulnerability exists in phpMyFAQ versions 4.0.14 and 4.0.15, which stems from server-side decoding without escaping, and could lead to a stored cross-site scripting atta...