logo

Database

Server side cross-site scripting In thorsten/phpmyfaq

Description

phpMyFAQ vulnerable to stored Cross-site Scripting Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2023-27532. NVD-2023-27533. OSV-2023-27534. GCVE-2023-2753

References

1. https://github.com/thorsten/phpmyfaq/commit/5401ab75d022932b8d5d7adaa771acf44fed18ba2. https://huntr.dev/bounties/eca2284d-e81a-4ab8-91bb-7afeca557628

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.