EPSS
Percentile
23.3%
thorsten/phpmyfaq is vulnerable to Cross-site Scripting (XSS). The vulnerability exists due to improper sanitization in the updatecategory parameter, which allows an attacker to inject and execute malicious JavaScript.
github.com/advisories/GHSA-m9qm-m5w5-9pgj
github.com/thorsten/phpMyFAQ/commit/a2642195e9fcb9a6f151bfaa4ff20bf1b905da2e
huntr.dev/bounties/1dc7f818-c8ea-4f80-b000-31b48a426334/