Security
Headlines
HeadlinesLatestCVEs

Tag

#php

GHSA-7q9c-f2v8-j8gw: phpMyFAQ Stored Cross-site Scripting vulnerability

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

ghsa
Open in Source
#xss#vulnerability#git#php
GHSA-hp8m-g55r-9cfq: phpMyFAQ Cross-site Scripting vulnerability

Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

GHSA-6cpg-gqgq-2rrr: phpMyFAQ Code Injection vulnerability

Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVE-2023-1762: fix: privilege escalation for users with insufficient permissions · thorsten/phpMyFAQ@ae6c1d8

Improper Privilege Management in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVE-2023-1761: fix: strip tags in comments · thorsten/phpMyFAQ@128ef85

Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVE-2023-1759: fix: corrected sanitazing the string · thorsten/phpMyFAQ@ecbd810

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVE-2023-1760: fix: added missing conversion to HTML entities · thorsten/phpMyFAQ@56295b5

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVE-2023-1753: fix: removed possible bypass to allow weak passwords · thorsten/phpMyFAQ@f612a72

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVE-2023-1755: huntr – Security Bounties for any GitHub repository

Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.12.