Lucene search

K

Phpmyfaq Security Vulnerabilities

cve
cve

CVE-2024-22202

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. phpMyFAQ's user removal page allows an attacker to spoof another user's detail, and in turn make a compelling phishing case for removing another user's account. The front-end of this page doesn't....

6.5CVSS

6.3AI Score

0.0005EPSS

2024-02-05 08:15 PM
18
cve
cve

CVE-2024-22208

phpMyFAQ is an Open Source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. The 'sharing FAQ' functionality allows any unauthenticated actor to misuse the phpMyFAQ application to send arbitrary emails to a large range of targets. The phpMyFAQ application has a...

6.5CVSS

6.5AI Score

0.0005EPSS

2024-02-05 09:15 PM
17
cve
cve

CVE-2024-24574

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. Unsafe echo of filename in phpMyFAQ\phpmyfaq\admin\attachments.php leads to allowed execution of JavaScript code in client side (XSS). This vulnerability has been patched in version...

6.5CVSS

6.3AI Score

0.001EPSS

2024-02-05 09:15 PM
17
cve
cve

CVE-2023-6889

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.2AI Score

0.0004EPSS

2023-12-16 09:15 AM
18
cve
cve

CVE-2023-6890

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.2AI Score

0.0004EPSS

2023-12-16 09:15 AM
19
cve
cve

CVE-2004-2257

phpMyFAQ 1.4.0 allows remote attackers to access the Image Manager to upload or delete images without authorization via a direct...

6.7AI Score

0.059EPSS

2005-07-17 04:00 AM
32
cve
cve

CVE-2023-0880

Misinterpretation of Input in GitHub repository thorsten/phpmyfaq prior to...

8.3CVSS

4.5AI Score

0.001EPSS

2023-02-17 03:15 AM
24
cve
cve

CVE-2023-0791

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

8.3CVSS

5.2AI Score

0.001EPSS

2023-02-12 02:15 PM
28
cve
cve

CVE-2023-0790

Uncaught Exception in GitHub repository thorsten/phpmyfaq prior to...

8.8CVSS

8.6AI Score

0.001EPSS

2023-02-12 02:15 PM
27
cve
cve

CVE-2023-0786

Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to...

8.4CVSS

4.8AI Score

0.001EPSS

2023-02-12 02:15 PM
33
cve
cve

CVE-2023-1761

Cross-site Scripting in GitHub repository thorsten/phpmyfaq prior to...

6.3CVSS

5.6AI Score

0.001EPSS

2023-03-31 02:15 AM
40
cve
cve

CVE-2023-1756

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.4AI Score

0.001EPSS

2023-04-05 04:15 PM
19
cve
cve

CVE-2023-0793

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to...

8.8CVSS

8.6AI Score

0.001EPSS

2023-02-12 02:15 PM
31
cve
cve

CVE-2023-0792

Code Injection in GitHub repository thorsten/phpmyfaq prior to...

6.5CVSS

5.6AI Score

0.001EPSS

2023-02-12 02:15 PM
25
cve
cve

CVE-2023-0787

Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to...

8.1CVSS

5.2AI Score

0.001EPSS

2023-02-12 02:15 PM
30
cve
cve

CVE-2023-0794

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

8.3CVSS

5.2AI Score

0.001EPSS

2023-02-12 02:15 PM
35
cve
cve

CVE-2023-1886

Authentication Bypass by Capture-replay in GitHub repository thorsten/phpmyfaq prior to...

9.8CVSS

9.4AI Score

0.002EPSS

2023-04-05 05:15 PM
21
cve
cve

CVE-2023-1885

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

6.3CVSS

5.4AI Score

0.001EPSS

2023-04-05 05:15 PM
14
cve
cve

CVE-2023-1753

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to...

9.8CVSS

9.4AI Score

0.002EPSS

2023-03-31 01:15 AM
33
cve
cve

CVE-2023-0788

Code Injection in GitHub repository thorsten/phpmyfaq prior to...

9.8CVSS

9.6AI Score

0.002EPSS

2023-02-12 02:15 PM
27
cve
cve

CVE-2023-1875

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.4AI Score

0.001EPSS

2023-04-22 06:15 PM
14
cve
cve

CVE-2023-0789

Command Injection in GitHub repository thorsten/phpmyfaq prior to...

9.8CVSS

9.6AI Score

0.001EPSS

2023-02-12 02:15 PM
38
cve
cve

CVE-2023-5865

Insufficient Session Expiration in GitHub repository thorsten/phpmyfaq prior to...

9.8CVSS

8.5AI Score

0.001EPSS

2023-10-31 01:15 AM
17
cve
cve

CVE-2023-5866

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to...

5.7CVSS

5.6AI Score

0.0005EPSS

2023-10-31 01:15 AM
13
cve
cve

CVE-2023-5864

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

4.8CVSS

5.1AI Score

0.0004EPSS

2023-10-31 01:15 AM
36
cve
cve

CVE-2023-5867

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5AI Score

0.0004EPSS

2023-10-31 01:15 AM
21
cve
cve

CVE-2023-5863

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to...

6.1CVSS

6.1AI Score

0.0005EPSS

2023-10-31 01:15 AM
19
cve
cve

CVE-2023-5320

Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to...

6.1CVSS

6.1AI Score

0.0005EPSS

2023-09-30 01:15 AM
73
cve
cve

CVE-2023-5316

Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to...

6.1CVSS

6.1AI Score

0.0005EPSS

2023-09-30 01:15 AM
72
cve
cve

CVE-2023-5227

Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq prior to...

9.8CVSS

7.8AI Score

0.001EPSS

2023-09-30 01:15 AM
36
cve
cve

CVE-2023-5317

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.4AI Score

0.0004EPSS

2023-09-30 01:15 AM
30
cve
cve

CVE-2023-5319

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.4AI Score

0.0004EPSS

2023-09-30 01:15 AM
74
cve
cve

CVE-2023-4006

Improper Neutralization of Formula Elements in a CSV File in GitHub repository thorsten/phpmyfaq prior to...

9.8CVSS

9.1AI Score

0.001EPSS

2023-07-31 01:15 AM
95
cve
cve

CVE-2023-4007

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.4AI Score

0.0004EPSS

2023-07-31 01:15 AM
95
cve
cve

CVE-2023-3469

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to...

4.8CVSS

4.9AI Score

0.001EPSS

2023-06-30 01:15 AM
8
cve
cve

CVE-2022-4409

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to...

7.5CVSS

7.4AI Score

0.001EPSS

2022-12-11 03:15 PM
51
cve
cve

CVE-2023-2998

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

6.1CVSS

5.8AI Score

0.001EPSS

2023-05-31 01:15 AM
78
cve
cve

CVE-2023-2999

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

6.1CVSS

5.9AI Score

0.001EPSS

2023-05-31 01:15 AM
76
cve
cve

CVE-2023-2753

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.4AI Score

0.001EPSS

2023-05-17 08:15 AM
23
cve
cve

CVE-2023-2752

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.4AI Score

0.001EPSS

2023-05-17 08:15 AM
80
cve
cve

CVE-2023-2427

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to...

4.8CVSS

5.5AI Score

0.001EPSS

2023-05-05 07:15 PM
120
cve
cve

CVE-2023-2550

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

4.8CVSS

5.9AI Score

0.001EPSS

2023-05-05 08:15 PM
106
cve
cve

CVE-2023-2428

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.7AI Score

0.001EPSS

2023-04-30 01:15 AM
22
cve
cve

CVE-2023-2429

Improper Access Control in GitHub repository thorsten/phpmyfaq prior to...

9.8CVSS

7.8AI Score

0.002EPSS

2023-04-30 03:15 AM
23
cve
cve

CVE-2023-1754

Improper Neutralization of Input During Web Page Generation in GitHub repository thorsten/phpmyfaq prior to...

4.7CVSS

5AI Score

0.001EPSS

2023-03-31 01:15 AM
20
cve
cve

CVE-2023-1883

Improper Access Control in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

5.7AI Score

0.001EPSS

2023-04-05 05:15 PM
19
cve
cve

CVE-2023-1887

Business Logic Errors in GitHub repository thorsten/phpmyfaq prior to...

4.3CVSS

5.8AI Score

0.001EPSS

2023-04-05 05:15 PM
21
cve
cve

CVE-2023-1758

Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

6.7AI Score

0.001EPSS

2023-04-05 04:15 PM
13
cve
cve

CVE-2023-1878

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to...

5.4CVSS

6.1AI Score

0.001EPSS

2023-04-05 05:15 PM
18
cve
cve

CVE-2023-1884

Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to...

6.1CVSS

5.3AI Score

0.001EPSS

2023-04-05 05:15 PM
16
Total number of security vulnerabilities116