Lucene search
Veracode Vulnerability DatabaseVERACODE:40742HistoryMay 31, 2023 - 5:26 a.m.
Cross-Site Scripting (XSS)
2023-05-3105:26:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
cross-site scripting
xss
thorsten/phpmyfaq
user-input sanitization
browser
javascript
vulnerability
software
EPSS
0.001
Percentile
40.5%
thorsten/phpmyfaq is vulnerable to Cross-Site Scripting (XSS). The vulnerability is due to a lack of user-input sanitization in the cleanUpContent function, which allows an attacker to inject and execute arbitrary JavaScript into the browser.
Related
cvelist
cvelist
CVE-2023-2753 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
2023-05-17 00:00:00
nvd
nvd
CVE-2023-2753
2023-05-17 08:15:08
huntr
huntr
Insufficient Filtering Leads to Stored Cross Site Scripting at FAQ
2023-04-12 08:29:36
osv
osv
CVE-2023-2753
2023-05-17 08:15:08
phpMyFAQ vulnerable to stored Cross-site Scripting
2023-05-17 09:30:16
github
github
phpMyFAQ vulnerable to stored Cross-site Scripting
2023-05-17 09:30:16
cve
cve
CVE-2023-2753
2023-05-17 08:15:08
prion
prion
Cross site scripting
2023-05-17 08:15:00
openvas
openvas
phpMyFAQ < 3.2.0-beta Multiple XSS Vulnerabilities
2023-05-18 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: curl-7.82.0-14.fc36
2023-04-09 01:41:25