CVE-2023-2429 – Improper Access Control in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-2429
Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.13. • https://github.com/thorsten/phpmyfaq/commit/07552f5577ff8b1e6f7cdefafcce9b2a744d3a24 https://huntr.dev/bounties/20d3a0b3-2693-4bf1-b196-10741201a540 • CWE-284: Improper Access Control •
CVE-2023-1875 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1875
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/dcf7dd43a3412aa951d7087b86a8b917fae2133a https://huntr.dev/bounties/39715aaf-e798-4c60-97c4-45f4f2cd5c61 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-1756 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1756
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/ca75f4688a8b0f14d5d0697b9f4b6ea66088f726 https://huntr.dev/bounties/e495b443-b328-42f5-aed5-d68b929b4cb9 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-1757 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1757
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/5061e5841be6c218ebb0de0cbf7b7f195dc46d19 https://huntr.dev/bounties/584a200a-6ff8-4d53-a3c0-e7893edff60c • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-1758 – Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1758
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/f3380f46c464d1bc6f3ded29213c79be0de8fc57 https://huntr.dev/bounties/0854328e-eb00-41a3-9573-8da8f00e369c • CWE-75: Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) •