Headline
GHSA-8595-6653-96p2: phpMyFAQ vulnerable to Stored Cross-site Scripting
phpMyFAQ prior to 3.1.13 has a stored cross site scripting vulnerability in name field in add question module. This allows an attacker to steal user cookies.
phpMyFAQ vulnerable to Stored Cross-site Scripting
Moderate severity GitHub Reviewed Published Apr 30, 2023 to the GitHub Advisory Database • Updated May 1, 2023
Related news
CVE-2023-2428: huntr – Security Bounties for any GitHub repository
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13.