phpmyfaq is vulnerable to Stored Cross-Site Scripting (XSS) attacks. The vulnerability is due to a lack of sanitization when adding a new faq news item which allows an attacker to inject and execute JavaScript in the browser.
CPE | Name | Operator | Version |
---|---|---|---|
thorsten/phpmyfaq | le | 3.1.11 | |
phpmyfaq/phpmyfaq | le | 3.1.11 | |
thorsten/phpmyfaq | le | 3.1.11 | |
phpmyfaq/phpmyfaq | le | 3.1.11 |