Security
Headlines
HeadlinesLatestCVEs

Tag

#php

GHSA-gvg8-r8w2-9gfj: phpMyFAQ Improper Input Validation vulnerability

Improper Input Validation in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

ghsa
Open in Source
#vulnerability#git#php
GHSA-4wfc-ghv5-2v7j: phpMyFAQ Stored Cross-site Scripting vulnerability

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

GHSA-4p4m-5qp7-479x: phpMyFAQ has Weak Password Requirements

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

GHSA-7q9c-f2v8-j8gw: phpMyFAQ Stored Cross-site Scripting vulnerability

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

GHSA-hp8m-g55r-9cfq: phpMyFAQ Cross-site Scripting vulnerability

Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

GHSA-6cpg-gqgq-2rrr: phpMyFAQ Code Injection vulnerability

Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVE-2023-1762: fix: privilege escalation for users with insufficient permissions · thorsten/phpMyFAQ@ae6c1d8

Improper Privilege Management in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVE-2023-1761: fix: strip tags in comments · thorsten/phpMyFAQ@128ef85

Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVE-2023-1759: fix: corrected sanitazing the string · thorsten/phpMyFAQ@ecbd810

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVE-2023-1760: fix: added missing conversion to HTML entities · thorsten/phpMyFAQ@56295b5

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.