This page lists publicly disclosed CVE vulnerabilities affecting nicephpscripts nice_php_faq_script (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-15988 | Nice PHP FAQ Script allows SQL Injection via the index.php nice_theme parameter, a different vulnerability than CVE-2008-6525. | [email protected] | 9.8 | 2.65% | 2017-10-31 | 2026-06-16 |
| CVE-2008-6525 | SQL injection vulnerability in the Admin Panel in Nice PHP FAQ Script (Knowledge base Script) allows remote attackers to execute arbitrary SQL commands via the Password parameter (aka the pass field). | [email protected] | 7.5 | 1.99% | 2009-03-25 | 2026-06-16 |