CVE-2023-1879 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1879
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/0dc8e527c375007cd4b8dbf61f7167393a6f6e91 https://huntr.dev/bounties/1dc7f818-c8ea-4f80-b000-31b48a426334 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-1882 – Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1882
Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/49db615c300ae0f87795f20570f6f5bdccb1d2f2 https://huntr.dev/bounties/8ab09a1c-cfd5-4ce0-aae3-d33c93318957 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-1883 – Improper Access Control in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1883
Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/db77df888178766987398597d4f153831c62a503 https://huntr.dev/bounties/2f1e417d-cf64-4cfb-954b-3a9cb2f38191 • CWE-284: Improper Access Control •
CVE-2023-1886 – Authentication Bypass by Capture-replay in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1886
Authentication Bypass by Capture-replay in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/27eaaae16850694634ac52416a0bd38b35d7330a https://huntr.dev/bounties/b7d244b7-5ac3-4964-81ee-8dbb5bb5e33a • CWE-294: Authentication Bypass by Capture-replay •
CVE-2023-1758 – Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1758
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/f3380f46c464d1bc6f3ded29213c79be0de8fc57 https://huntr.dev/bounties/0854328e-eb00-41a3-9573-8da8f00e369c • CWE-75: Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) •