Page 11 of 101 results (0.002 seconds)
CVSS: 6.1EPSS: 0%CPEs: 119EXPL: 3
CVSS: 6.1EPSS: 0%CPEs: 119EXPL: 3CVE-2009-4780 – phpMyFAQ < 2.5.4 - Multiple Cross-Site Scripting Vulnerabilities
https://notcve.org/view.php?id=CVE-2009-4780
21 Apr 2010 — Multiple cross-site scripting (XSS) vulnerabilities in index.php in phpMyFAQ before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via (1) the lang parameter in a sitemap action, (2) the search parameter in a search action, (3) the tagging_id parameter in a search action, (4) the highlight parameter in an artikel action, (5) the artlang parameter in an artikel action, (6) the letter parameter in a sitemap action, (7) the lang parameter in a show action, (8) the cat parameter in a show a... • https://www.exploit-db.com/exploits/33385 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •