phpmyfaq is vulnerable to Improper Input Validation. The library does not properly neutralize user-controllable inputs before it is placed as frontend outputs on a web page served to other users which allows an attacker to perform privileged operations on behalf of the user or gain access to sensitive data or cause XSS through log messages.
CPE | Name | Operator | Version |
---|---|---|---|
thorsten/phpmyfaq | le | 3.1.11 | |
phpmyfaq/phpmyfaq | le | 3.1.11 | |
thorsten/phpmyfaq | le | 3.1.11 | |
phpmyfaq/phpmyfaq | le | 3.1.11 |