Lucene search
Veracode Vulnerability DatabaseVERACODE:37727HistoryNov 01, 2022 - 2:48 a.m.
Cross-Site Scripting (XSS)
2022-11-0102:48:57
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
cross-site scripting
vulnerability
special characters
injection
html
script
website
security issue
EPSS
0.001
Percentile
21.4%
thorsten/phpmyfaq is vulnerable to cross-site scripting. The vulnerability exists in multiple functions due to a missing check on special characters for page ID, allowing an attacker to inject arbitrary html and script code into the website.
Related
osv
osv
phpMyFAQ vulnerable to stored Cross-site Scripting
2022-10-31 12:00:18
CVE-2022-3765
2022-10-31 11:15:10
huntr
huntr
Stored Cross-site scripting
2022-10-20 10:37:59
github
github
phpMyFAQ vulnerable to stored Cross-site Scripting
2022-10-31 12:00:18
nvd
nvd
CVE-2022-3765
2022-10-31 11:15:10
cve
cve
CVE-2022-3765
2022-10-31 11:15:10
prion
prion
Cross site scripting
2022-10-31 11:15:00
cvelist
cvelist
CVE-2022-3765 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
2022-10-31 00:00:00
openvas
openvas
phpMyFAQ < 3.1.8 Multiple Vulnerabilities
2022-11-03 00:00:00