EPSS
Percentile
79.3%
phpMyFAQ is vulnerable to cross-site scripting (XSS) attacks. The library does not escape the Title of your FAQ field in the Configuration module, allowing a malicious user to inject and execute arbitrary web script.
Title of your FAQ
github.com/thorsten/phpMyFAQ/commit/30b0025e19bd95ba28f4eff4d259671e7bb6bb86