thorsten/phpmyfaq is vulnerable to Cross-site Scripting (XSS). The vulnerability exists in user.php
because the username parameter is not properly sanitized which allows an attacker to inject and execute arbitrary javascript.
CPE | Name | Operator | Version |
---|---|---|---|
thorsten/phpmyfaq | le | 3.1.11 | |
thorsten/phpmyfaq | le | 3.1.11 |