CVE-2023-1887 – Business Logic Errors in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1887
Business Logic Errors in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/400d9cd988d3287515c56b2ad6343026966f1a89 https://huntr.dev/bounties/e4a58835-96b5-412c-a17e-3ceed30231e1 • CWE-840: Business Logic Errors •
CVE-2023-1756 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1756
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/ca75f4688a8b0f14d5d0697b9f4b6ea66088f726 https://huntr.dev/bounties/e495b443-b328-42f5-aed5-d68b929b4cb9 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-1882 – Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1882
Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/49db615c300ae0f87795f20570f6f5bdccb1d2f2 https://huntr.dev/bounties/8ab09a1c-cfd5-4ce0-aae3-d33c93318957 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-1878 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1878
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/e018823f8e3bca103c11e5a98b0dd469e41ed417 https://huntr.dev/bounties/93f981a3-231d-460d-a239-bb960e8c2fdc • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-1885 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1885
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/fecc803ab9c3e82718c4bcea7fe919d7a22ec024 https://huntr.dev/bounties/bce84c02-abb2-474f-a67b-1468c9dcabb8 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •