logo

Database

Server side cross-site scripting In thorsten/phpmyfaq

Description

thorsten/phpmyfaq is vulnerable to cross-site scripting (XSS) Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2023-03122. NVD-2023-03123. OSV-2023-03124. GCVE-2023-0312

References

1. https://github.com/thorsten/phpmyfaq/commit/65d419ca04111ee2612ae81cdd59753654cfe18a2. https://huntr.dev/bounties/f50ec8d1-cd60-4c2d-9ab8-3711870d83b9

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.