Filtered by vendor Phpmyfaq
Subscriptions
Total
125 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-3754 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | 9.8 Critical |
| Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.8. | ||||
| CVE-2022-3608 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | 8.4 High |
| Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-alpha. | ||||
| CVE-2018-16651 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| The admin backend in phpMyFAQ before 2.9.11 allows CSV injection in reports. | ||||
| CVE-2018-16650 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| phpMyFAQ before 2.9.11 allows CSRF. | ||||
| CVE-2017-7579 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| inc/PMF/Faq.php in phpMyFAQ before 2.9.7 has XSS in the question field. | ||||
| CVE-2017-15809 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag. | ||||
| CVE-2017-15808 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php. | ||||
| CVE-2017-15735 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for modifying a glossary. | ||||
| CVE-2017-15734 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.main.php. | ||||
| CVE-2017-15733 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/ajax.attachment.php and admin/att.main.php. | ||||
| CVE-2017-15732 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/news.php. | ||||
| CVE-2017-15731 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.adminlog.php. | ||||
| CVE-2017-15730 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.ratings.php. | ||||
| CVE-2017-15729 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for adding a glossary. | ||||
| CVE-2017-15728 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via metaDescription or metaKeywords. | ||||
| CVE-2017-15727 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via an HTML attachment. | ||||
| CVE-2017-14619 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| Cross-site scripting (XSS) vulnerability in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the "Title of your FAQ" field in the Configuration Module. | ||||
| CVE-2017-14618 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| Cross-site scripting (XSS) vulnerability in inc/PMF/Faq.php in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the Questions field in an "Add New FAQ" action. | ||||
| CVE-2017-11187 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| phpMyFAQ before 2.9.8 does not properly mitigate brute-force attacks that try many passwords in attempted logins quickly. | ||||
| CVE-2014-6050 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-11-21 | N/A |
| phpMyFAQ before 2.8.13 allows remote attackers to bypass the CAPTCHA protection mechanism by replaying the request. | ||||