Aggregates CVE and security vulnerability intelligence across all phpMyFAQ-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk csrf, vendor risk sql injection, vendor risk path handling, and vendor risk input validation and related problems; some flaws may lead to vendor impact data exposure.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-3469 | Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.2. | [email protected] | 4.8 | 0.58% | 2023-06-29 | 2026-06-17 |
| CVE-2023-2999 | Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14. | [email protected] | 6.1 | 0.48% | 2023-05-30 | 2026-06-17 |
| CVE-2023-2998 | Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14. | [email protected] | 6.1 | 0.52% | 2023-05-30 | 2026-06-17 |
| CVE-2023-2753 | Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta. | [email protected] | 5.4 | 0.55% | 2023-05-17 | 2026-06-17 |
| CVE-2023-2752 | Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta. | [email protected] | 5.4 | 0.52% | 2023-05-17 | 2026-06-17 |
| CVE-2023-2550 | Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13. | [email protected] | 4.8 | 0.46% | 2023-05-05 | 2026-06-17 |
| CVE-2023-2427 | Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.13. | [email protected] | 4.8 | 0.47% | 2023-05-05 | 2026-06-17 |
| CVE-2023-2429 | Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.13. | [email protected] | 9.8 | 0.51% | 2023-04-29 | 2026-06-17 |
| CVE-2023-2428 | Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13. | [email protected] | 5.4 | 0.56% | 2023-04-29 | 2026-06-17 |
| CVE-2023-1875 | Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 5.4 | 0.48% | 2023-04-22 | 2026-06-17 |
| CVE-2023-1887 | Business Logic Errors in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 4.3 | 0.70% | 2023-04-05 | 2026-06-17 |
| CVE-2023-1886 | Authentication Bypass by Capture-replay in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 7.3 | 0.88% | 2023-04-05 | 2026-06-17 |
| CVE-2023-1885 | Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 6.3 | 0.48% | 2023-04-05 | 2026-06-17 |
| CVE-2023-1884 | Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 6.1 | 0.45% | 2023-04-05 | 2026-06-17 |
| CVE-2023-1883 | Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 5.4 | 0.49% | 2023-04-05 | 2026-06-17 |
| CVE-2023-1882 | Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 5.4 | 0.53% | 2023-04-05 | 2026-06-17 |
| CVE-2023-1880 | Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 6.1 | 1.64% | 2023-04-05 | 2026-06-17 |
| CVE-2023-1879 | Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 5.4 | 0.47% | 2023-04-05 | 2026-06-17 |
| CVE-2023-1878 | Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 5.4 | 0.54% | 2023-04-05 | 2026-06-17 |
| CVE-2023-1758 | Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | [email protected] | 5.4 | 0.54% | 2023-04-05 | 2026-06-17 |