Filtered by vendor Phpmyfaq Subscriptions
Total 117 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-0311 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 9.8 Critical
Improper Authentication in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2023-0310 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2023-0309 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2023-0308 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2023-0307 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 9.8 Critical
Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2023-0306 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
CVE-2022-4409 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 7.5 High
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVE-2022-4408 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVE-2022-4407 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 6.1 Medium
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
CVE-2022-3766 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 6.1 Medium
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVE-2022-3765 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVE-2022-3754 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 9.8 Critical
Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVE-2022-3608 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 8.4 High
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-alpha.
CVE-2018-16651 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A
The admin backend in phpMyFAQ before 2.9.11 allows CSV injection in reports.
CVE-2018-16650 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A
phpMyFAQ before 2.9.11 allows CSRF.
CVE-2017-7579 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A
inc/PMF/Faq.php in phpMyFAQ before 2.9.7 has XSS in the question field.
CVE-2017-15809 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A
In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag.
CVE-2017-15808 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A
In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php.
CVE-2017-15735 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for modifying a glossary.
CVE-2017-15734 1 Phpmyfaq 1 Phpmyfaq 2024-11-21 N/A
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.main.php.