phpmyfaq is vulnerable to Stored HTML Injection. The vulnerability exists due to improper handling of inputs through the Question Form
, which allows an attacker to inject and execute malicious HTML content in the web page when an admin approves the question, possibly leading to code execution.
CPE | Name | Operator | Version |
---|---|---|---|
thorsten/phpmyfaq | le | 3.1.10 | |
phpmyfaq/phpmyfaq | le | 3.1.10 | |
thorsten/phpmyfaq | le | 3.1.10 | |
phpmyfaq/phpmyfaq | le | 3.1.10 |