Lucene search
Veracode Vulnerability DatabaseVERACODE:39375HistoryFeb 22, 2023 - 6:26 a.m.
HTML Injection
2023-02-2206:26:56
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
html injection
phpmyfaq
input sanitization
tags component
attacker
malicious content
code execution
software
0.001 Low
EPSS
Percentile
30.4%
phpmyfaq is vulnerable to HTML Injection. The vulnerability exists due to improper input sanitization in the tags component, which allows an attacker to inject and execute malicious HTML content, possibly resulting in code execution.
| CPE | Name | Operator | Version |
|---|---|---|---|
| thorsten/phpmyfaq | le | 3.1.10 | |
| phpmyfaq/phpmyfaq | le | 3.1.10 | |
| thorsten/phpmyfaq | le | 3.1.10 | |
| phpmyfaq/phpmyfaq | le | 3.1.10 |
Related
osv
osv
CVE-2023-0792
2023-02-12 14:15:11
Code Injection in thorsten/phpmyfaq
2023-02-12 15:30:25
cvelist
cvelist
CVE-2023-0792 Code Injection in thorsten/phpmyfaq
2023-02-12 00:00:00
nvd
nvd
CVE-2023-0792
2023-02-12 14:15:11
github
github
Code Injection in thorsten/phpmyfaq
2023-02-12 15:30:25
cnvd
cnvd
phpMyFAQ code injection vulnerability
2023-02-14 00:00:00
prion
prion
Code injection
2023-02-12 14:15:00
cve
cve
CVE-2023-0792
2023-02-12 14:15:11
huntr
huntr
HTML-Injection
2023-01-21 23:09:46
openvas
openvas
phpMyFAQ < 3.1.11 Multiple Vulnerabilities
2023-02-13 00:00:00