CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-0788 – Code Injection in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-0788
Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. • https://github.com/thorsten/phpmyfaq/commit/77b42b9d0be3990ee7389207a71528b304b03039 https://huntr.dev/bounties/808d5452-607c-4af1-812f-26c49faf3e61 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0793 – Weak Password Requirements in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-0793
Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.11. • https://github.com/thorsten/phpmyfaq/commit/00c04093c671607ee06cdfd670070809460f9547 https://huntr.dev/bounties/b3881a1f-2f1e-45cb-86f3-735f66e660e9 • CWE-521: Weak Password Requirements •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-0789 – Command Injection in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-0789
Command Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. • https://github.com/thorsten/phpmyfaq/commit/40515c74815ace394ab23c6c19cbb33fd49059cb https://huntr.dev/bounties/d9375178-2f23-4f5d-88bd-bba3d6ba7cc5 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0792 – Code Injection in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-0792
Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. • https://github.com/thorsten/phpmyfaq/commit/d8964568d69488de02f0a0a58acc822eeb5c3cb1 https://huntr.dev/bounties/9e21156b-ab1d-4c60-88ef-8c9f3e2feb7f • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 8.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-0791 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-0791
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.11. • https://github.com/thorsten/phpmyfaq/commit/26663efcb0b67e421e4ecccad8f19e7106bb03ce https://huntr.dev/bounties/7152b340-c6f3-4ac8-9f62-f764a267488d • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •