Lucene search
@huntrdevVULNRICHMENT:CVE-2023-5320HistorySep 30, 2023 - 12:00 a.m.
CVE-2023-5320 Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq
2023-09-3000:00:42
CWE-79
@huntrdev
github.com
3
cross-site scripting
xss
dom
github
repository
thorsten
phpmyfaq
security flaw
vulnerability
prior version
3.1.18
cve-2023-5320
CVSS3
9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
AI Score
6
Confidence
High
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:thorsten:phpmyfaq:*:*:*:*:*:*:*:*"
],
"vendor": "thorsten",
"product": "phpmyfaq",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "3.1.18",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]Related
nvd
nvd
CVE-2023-5320
2023-09-30 01:15:39
prion
prion
Cross site scripting
2023-09-30 01:15:00
cve
cve
CVE-2023-5320
2023-09-30 01:15:39
cvelist
cvelist
CVE-2023-5320 Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq
2023-09-30 00:00:42
osv
osv
phpMyFAQ Cross-site Scripting vulnerability
2023-09-30 03:31:49
CVE-2023-5320
2023-09-30 01:15:39
huntr
huntr
Store DOM XSS in Edit configuration
2023-08-28 19:50:08
github
github
phpMyFAQ Cross-site Scripting vulnerability
2023-09-30 03:31:49
veracode
veracode
Cross Site Scripting
2023-10-03 06:47:45
openvas
openvas
phpMyFAQ < 3.1.18 Multiple Vulnerabilities
2023-10-03 00:00:00
CVSS3
9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
AI Score
6
Confidence
High
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-5320