CVE-2023-1884 – Cross-site Scripting (XSS) - Generic in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1884
Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/7f0f921de74c88038826c46bbd2a123518d9d611 https://huntr.dev/bounties/dda73cb6-9344-4822-97a1-2e31efb6a73e • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-1885 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1885
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/fecc803ab9c3e82718c4bcea7fe919d7a22ec024 https://huntr.dev/bounties/bce84c02-abb2-474f-a67b-1468c9dcabb8 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-1886 – Authentication Bypass by Capture-replay in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1886
Authentication Bypass by Capture-replay in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/27eaaae16850694634ac52416a0bd38b35d7330a https://huntr.dev/bounties/b7d244b7-5ac3-4964-81ee-8dbb5bb5e33a • CWE-294: Authentication Bypass by Capture-replay •
CVE-2023-1887 – Business Logic Errors in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1887
Business Logic Errors in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/400d9cd988d3287515c56b2ad6343026966f1a89 https://huntr.dev/bounties/e4a58835-96b5-412c-a17e-3ceed30231e1 • CWE-840: Business Logic Errors •
CVE-2023-1760 – Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
https://notcve.org/view.php?id=CVE-2023-1760
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12. • https://github.com/thorsten/phpmyfaq/commit/56295b54062a284020fccce12a5044f9fa7d2770 https://huntr.dev/bounties/2d0ac48a-490d-4548-8d98-7447042dd1b5 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •