CVSS: 6.3EPSS: 0%CPEs: 1EXPL: 1CVE-2023-5866 – Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-5866
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.2.1. Cookie confidencial en sesión HTTPS sin atributo "seguro" en el repositorio de GitHub thorsten/phpmyfaq anterior a 3.2.1. • https://github.com/thorsten/phpmyfaq/commit/fdacff14acd5e69841068f0e32b59e2d1b1d0d55 https://huntr.com/bounties/ec44bcba-ae7f-497a-851e-8165ecf56945 • CWE-614: Sensitive Cookie in HTTPS Session Without 'Secure' Attribute •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-5867 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-5867
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.2. Cross-site Scripting (XSS): almacenadas en el repositorio de GitHub thorsten/phpmyfaq antes de 3.2.2. • https://github.com/thorsten/phpmyfaq/commit/5310cb8c37dc3a5c5aead0898690b14705c433d3 https://huntr.com/bounties/5c09b32e-a041-4a1e-a277-eb3e80967df0 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-5865 – Insufficient Session Expiration in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-5865
Insufficient Session Expiration in GitHub repository thorsten/phpmyfaq prior to 3.2.2. Caducidad de sesión insuficiente en el repositorio de GitHub thorsten/phpmyfaq anterior a 3.2.2. • https://github.com/thorsten/phpmyfaq/commit/5f43786f52c3d517e7665abd25d534e180e08dc5 https://huntr.com/bounties/4c4b7395-d9fd-4ca0-98d7-2e20c1249aff • CWE-613: Insufficient Session Expiration •
CVSS: 7.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-5864 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-5864
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.1. Cross-site Scripting (XSS): almacenadas en el repositorio de GitHub thorsten/phpmyfaq antes de la versión 3.2.1. • https://github.com/thorsten/phpmyfaq/commit/b3e5a053b59dcc072d76a55d6ce0311ea30174fa https://huntr.com/bounties/e4b0e8f4-5e06-49d1-832f-5756573623ad • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-5863 – Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-5863
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.2. Cross-site Scripting (XSS): reflejado en el repositorio de GitHub thorsten/phpmyfaq antes de 3.2.2. • https://github.com/thorsten/phpmyfaq/commit/97e813dcd2022bd10a8770569a8b02591716365f https://huntr.com/bounties/fbfd4e84-61fb-4063-8f11-15877b8c1f6f • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •