thorsten/phpmyfaq is vulnerable to cross-site scripting. The vulnerability exists in the backup.export.php
due to to improper verification of backup files which allows an attacker to export the configuration and re-upload the same file with the admin grant.
CPE | Name | Operator | Version |
---|---|---|---|
thorsten/phpmyfaq | le | 3.1.13 | |
phpmyfaq/phpmyfaq | le | 3.1.13 | |
thorsten/phpmyfaq | le | 3.1.13 | |
phpmyfaq/phpmyfaq | le | 3.1.13 |