This page lists publicly disclosed CVE vulnerabilities for nicephpscripts nice_php_faq_script from every vulnerable NVD CPE match row for this product, including cases where the versions table cannot show finer version attributes.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-15988 | Nice PHP FAQ Script allows SQL Injection via the index.php nice_theme parameter, a different vulnerability than CVE-2008-6525. | [email protected] | 9.8 | 2.65% | 2017-10-31 | 2026-06-16 |
| CVE-2008-6525 | SQL injection vulnerability in the Admin Panel in Nice PHP FAQ Script (Knowledge base Script) allows remote attackers to execute arbitrary SQL commands via the Password parameter (aka the pass field). | [email protected] | 7.5 | 1.99% | 2009-03-25 | 2026-06-16 |