MidnightBSD

Advisories for phpmyfaq

CVE-2004-2255 MEDIUM

Directory traversal vulnerability in phpMyFAQ 1.3.12 allows remote attackers to read arbitrary files, and possibly execute local PHP files, via the action variable, which is used as part of a template filename.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.3.12
CVE-2004-2257 MEDIUM

phpMyFAQ 1.4.0 allows remote attackers to access the Image Manager to upload or delete images without authorization via a direct request.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-425,CWE-425,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.4.0
CVE-2005-0702 MEDIUM

SQL injection vulnerability in phpMyFAQ 1.4 and 1.5 allows remote attackers to add FAQ records to the database via the username field in forum messages.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.5
phpmyfaq phpmyfaq 1.4a
phpmyfaq phpmyfaq 1.4_alpha2
phpmyfaq phpmyfaq 1.4
phpmyfaq phpmyfaq 1.4_alpha1
CVE-2005-3046 MEDIUM

SQL injection vulnerability in password.php in PhpMyFaq 1.5.1 allows remote attackers to modify SQL queries and gain administrator privileges via the user field.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.5.1
CVE-2005-3047 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in PhpMyFaq 1.5.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PMF_CONF[version] parameter to footer.php or (2) PMF_LANG[metaLanguage] to header.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.5.1
CVE-2005-3048 MEDIUM

Directory traversal vulnerability in index.php in PhpMyFaq 1.5.1 allows remote attackers to read arbitrary files or include arbitrary PHP files via a .. (dot dot) in the LANGCODE parameter, which also allows direct code injection via the User Agent field in a request packet, which can be activated by using LANGCODE to reference the user tracking data file.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.5.1
CVE-2005-3049 MEDIUM

PhpMyFaq 1.5.1 stores data files under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain sensitive information via a direct request to the data/tracking[DATE] file.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.5.1
CVE-2005-3050 MEDIUM

PhpMyFaq 1.5.1 allows remote attackers to obtain sensitive information via a LANGCODE parameter that does not exist, which reveals the path in an error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.5.1
CVE-2005-3734 MEDIUM

Cross-site scripting (XSS) vulnerability in the "add content" page in phpMyFAQ 1.5.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) thema, (2) username, and (3) usermail parameters.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.5_beta1
phpmyfaq phpmyfaq 1.5_beta3
phpmyfaq phpmyfaq 1.5_rc1
phpmyfaq phpmyfaq 1.5.1
phpmyfaq phpmyfaq 1.5_beta2
phpmyfaq phpmyfaq 1.5
phpmyfaq phpmyfaq 1.5_rc5
phpmyfaq phpmyfaq 1.5.3
phpmyfaq phpmyfaq 1.5_alpha2
phpmyfaq phpmyfaq 1.5_rc3
phpmyfaq phpmyfaq 1.5_rc4
phpmyfaq phpmyfaq 1.5_rc2
phpmyfaq phpmyfaq 1.5_alpha1
CVE-2009-4780 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in index.php in phpMyFAQ before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via (1) the lang parameter in a sitemap action, (2) the search parameter in a search action, (3) the tagging_id parameter in a search action, (4) the highlight parameter in an artikel action, (5) the artlang parameter in an artikel action, (6) the letter parameter in a sitemap action, (7) the lang parameter in a show action, (8) the cat parameter in a show action, (9) the newslang parameter in a news action, (10) the artlang parameter in a send2friend action, (11) the cat parameter in a send2friend action, (12) the id parameter in a send2friend action, (13) the srclang parameter in a translate action, (14) the id parameter in a translate action, (15) the cat parameter in a translate action, (16) the cat parameter in an add action, or (17) the question parameter in an add action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.4.10
phpmyfaq phpmyfaq 1.6.5
phpmyfaq phpmyfaq 1.6.6
phpmyfaq phpmyfaq 1.1.3
phpmyfaq phpmyfaq 1.3.3
phpmyfaq phpmyfaq 0.85
phpmyfaq phpmyfaq 1.4a
phpmyfaq phpmyfaq 1.4.1
phpmyfaq phpmyfaq 1.3.2
phpmyfaq phpmyfaq 1.4.7
phpmyfaq phpmyfaq 2.0.9
phpmyfaq phpmyfaq 1.3.11
phpmyfaq phpmyfaq 1.3.8
phpmyfaq phpmyfaq 2.0.2
phpmyfaq phpmyfaq 2.0.10
phpmyfaq phpmyfaq 2.0.17
phpmyfaq phpmyfaq 1.4.0
phpmyfaq phpmyfaq 0.90
phpmyfaq phpmyfaq 2.5.2
phpmyfaq phpmyfaq 0.86
phpmyfaq phpmyfaq 1.5.3
phpmyfaq phpmyfaq 1.6.0
phpmyfaq phpmyfaq 1.1.2
phpmyfaq phpmyfaq 1.1.4
phpmyfaq phpmyfaq 1.4.5
phpmyfaq phpmyfaq 1.2.3
phpmyfaq phpmyfaq 2.0.6
phpmyfaq phpmyfaq 0.80a
phpmyfaq phpmyfaq 1.4.4
phpmyfaq phpmyfaq 0.60
phpmyfaq phpmyfaq 1.5
phpmyfaq phpmyfaq 1.3.9
phpmyfaq phpmyfaq 1.4.8
phpmyfaq phpmyfaq 1.0.1a
phpmyfaq phpmyfaq 1.3.5
phpmyfaq phpmyfaq 1.0.1
phpmyfaq phpmyfaq 1.3.13
phpmyfaq phpmyfaq 1.5.4
phpmyfaq phpmyfaq 1.6.2
phpmyfaq phpmyfaq 1.5.6
phpmyfaq phpmyfaq 2.0.1
phpmyfaq phpmyfaq 1.2.0
phpmyfaq phpmyfaq 1.3.4
phpmyfaq phpmyfaq 0.70
phpmyfaq phpmyfaq 1.5.8
phpmyfaq phpmyfaq 2.0.7
phpmyfaq phpmyfaq 2.5.1
phpmyfaq phpmyfaq 1.1.5
phpmyfaq phpmyfaq 1.4
phpmyfaq phpmyfaq 1.1.0
phpmyfaq phpmyfaq 1.3.12
phpmyfaq phpmyfaq 2.0.3
phpmyfaq phpmyfaq 2.5.3
phpmyfaq phpmyfaq 1.4.6
phpmyfaq phpmyfaq 1.2.1
phpmyfaq phpmyfaq 1.2.4
phpmyfaq phpmyfaq 2.0.13
phpmyfaq phpmyfaq 2.0.16
phpmyfaq phpmyfaq 1.4.3
phpmyfaq phpmyfaq 1.5.1
phpmyfaq phpmyfaq 1.3.10
phpmyfaq phpmyfaq 1.5.9
phpmyfaq phpmyfaq 1.6.3
phpmyfaq phpmyfaq 1.3.0
phpmyfaq phpmyfaq 1.2.5b
phpmyfaq phpmyfaq 2.5.0
phpmyfaq phpmyfaq 1.1.1
phpmyfaq phpmyfaq 2.0.4
phpmyfaq phpmyfaq 1.5.0
phpmyfaq phpmyfaq 2.0.14
phpmyfaq phpmyfaq 1.4.0a
phpmyfaq phpmyfaq 2.0.0
phpmyfaq phpmyfaq *
phpmyfaq phpmyfaq 1.5.5
phpmyfaq phpmyfaq 1.6.7
phpmyfaq phpmyfaq 1.6.1
phpmyfaq phpmyfaq 0.666
phpmyfaq phpmyfaq 2.0.5
phpmyfaq phpmyfaq 2.0.15
phpmyfaq phpmyfaq 1.2.5
phpmyfaq phpmyfaq 1.3.6
phpmyfaq phpmyfaq 1.6.4
phpmyfaq phpmyfaq 2.0.8
phpmyfaq phpmyfaq 1.3.14
phpmyfaq phpmyfaq 1.6.8
phpmyfaq phpmyfaq 1.4.11
phpmyfaq phpmyfaq 1.0
phpmyfaq phpmyfaq 1.4.2
phpmyfaq phpmyfaq 0.80
phpmyfaq phpmyfaq 1.5.2
phpmyfaq phpmyfaq 0.87
phpmyfaq phpmyfaq 1.6.9
phpmyfaq phpmyfaq 1.4.9
phpmyfaq phpmyfaq 2.0.12
phpmyfaq phpmyfaq 0.65
phpmyfaq phpmyfaq 1.6.10
phpmyfaq phpmyfaq 1.6.12
phpmyfaq phpmyfaq 2.0.11
phpmyfaq phpmyfaq 1.2.2
phpmyfaq phpmyfaq 1.2.5a
phpmyfaq phpmyfaq 1.6.11
phpmyfaq phpmyfaq 1.3.7
phpmyfaq phpmyfaq 1.3.1
phpmyfaq phpmyfaq 0.95
phpmyfaq phpmyfaq 1.1.4a
phpmyfaq phpmyfaq 1.5.7
CVE-2010-4558 HIGH

phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th and December 15th 2010, contains an externally introduced modification (Trojan Horse) in the getTopTen method in inc/Faq.php, which allows remote attackers to execute arbitrary PHP code.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 2.6.12
phpmyfaq phpmyfaq 2.6.11
CVE-2011-3783 MEDIUM

phpMyFAQ 2.6.13 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lang/language_uk.php and certain other files.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 2.6.13
CVE-2011-4825 HIGH

Static code injection vulnerability in inc/function.base.php in Ajax File and Image Manager before 1.1, as used in tinymce before 1.4.2, phpMyFAQ 2.6 before 2.6.19 and 2.7 before 2.7.1, and possibly other products, allows remote attackers to inject arbitrary PHP code into data.php via crafted parameters.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
phpletter ajax_file_and_image_manager 0.5.5
phpmyfaq phpmyfaq 2.6.9
phpmyfaq phpmyfaq 2.6.5
phpmyfaq phpmyfaq 2.6.3
phpmyfaq phpmyfaq 2.6.4
phpmyfaq phpmyfaq 2.6.11
phpletter ajax_file_and_image_manager *
phpmyfaq phpmyfaq 2.6.0
phpletter ajax_file_and_image_manager 0.8.24
phpmyfaq phpmyfaq 2.6.1
phpletter ajax_file_and_image_manager 0.8.9
phpletter ajax_file_and_image_manager 0.5.7
phpmyfaq phpmyfaq 2.6.12
phpmyfaq phpmyfaq 2.6.13
tinymce tinymce *
phpmyfaq phpmyfaq 2.6.14
phpmyfaq phpmyfaq 2.6.2
phpmyfaq phpmyfaq 2.6.10
phpletter ajax_file_and_image_manager 0.7.8
phpmyfaq phpmyfaq 2.6.7
phpmyfaq phpmyfaq 2.6.15
phpletter ajax_file_and_image_manager 0.6.12
phpletter ajax_file_and_image_manager 0.7.10
phpmyfaq phpmyfaq 2.6.18
phpmyfaq phpmyfaq 2.6.6
phpletter ajax_file_and_image_manager 0.8.8
phpletter ajax_file_and_image_manager 0.5
phpmyfaq phpmyfaq 2.6.8
phpmyfaq phpmyfaq 2.6.16
phpmyfaq phpmyfaq 2.6.17
phpletter ajax_file_and_image_manager 0.8
phpmyfaq phpmyfaq 2.7.0
phpletter ajax_file_and_image_manager 0.6
phpletter ajax_file_and_image_manager 0.9
phpletter ajax_file_and_image_manager 1.0
CVE-2014-0813 MEDIUM

Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to hijack the authentication of arbitrary users for requests that modify settings.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.4.10
phpmyfaq phpmyfaq 2.6.0
phpmyfaq phpmyfaq 1.6.5
phpmyfaq phpmyfaq 1.6.6
phpmyfaq phpmyfaq 2.8.0
phpmyfaq phpmyfaq 1.1.3
phpmyfaq phpmyfaq 1.3.3
phpmyfaq phpmyfaq 2.6.14
phpmyfaq phpmyfaq 1.4.1
phpmyfaq phpmyfaq 2.5.7
phpmyfaq phpmyfaq 1.3.2
phpmyfaq phpmyfaq 1.4.7
phpmyfaq phpmyfaq 2.0.9
phpmyfaq phpmyfaq 1.3.11
phpmyfaq phpmyfaq 1.3.8
phpmyfaq phpmyfaq 2.0.2
phpmyfaq phpmyfaq 2.0.10
phpmyfaq phpmyfaq 2.7.5
phpmyfaq phpmyfaq 2.7.2
phpmyfaq phpmyfaq 2.0.17
phpmyfaq phpmyfaq 1.4.0
phpmyfaq phpmyfaq 2.8.2
phpmyfaq phpmyfaq 2.5.2
phpmyfaq phpmyfaq 1.5.3
phpmyfaq phpmyfaq 1.6.0
phpmyfaq phpmyfaq 2.7.0
phpmyfaq phpmyfaq 1.1.2
phpmyfaq phpmyfaq 1.1.4
phpmyfaq phpmyfaq 1.4.5
phpmyfaq phpmyfaq 1.2.3
phpmyfaq phpmyfaq 2.6.4
phpmyfaq phpmyfaq 2.0.6
phpmyfaq phpmyfaq 1.4.4
phpmyfaq phpmyfaq 1.5
phpmyfaq phpmyfaq 2.6.12
phpmyfaq phpmyfaq 2.7.8
phpmyfaq phpmyfaq 1.3.9
phpmyfaq phpmyfaq 1.4.8
phpmyfaq phpmyfaq 1.0.1a
phpmyfaq phpmyfaq 1.3.5
phpmyfaq phpmyfaq 1.0.1
phpmyfaq phpmyfaq 1.3.13
phpmyfaq phpmyfaq 1.5.4
phpmyfaq phpmyfaq 1.6.2
phpmyfaq phpmyfaq 1.5.6
phpmyfaq phpmyfaq 2.0.1
phpmyfaq phpmyfaq 1.2.0
phpmyfaq phpmyfaq 1.3.4
phpmyfaq phpmyfaq 2.6.2
phpmyfaq phpmyfaq 2.6.10
phpmyfaq phpmyfaq 2.8.1
phpmyfaq phpmyfaq 1.5.8
phpmyfaq phpmyfaq 2.0.7
phpmyfaq phpmyfaq 2.5.1
phpmyfaq phpmyfaq 1.1.5
phpmyfaq phpmyfaq 2.7.4
phpmyfaq phpmyfaq 1.4
phpmyfaq phpmyfaq 1.1.0
phpmyfaq phpmyfaq 1.3.12
phpmyfaq phpmyfaq 2.0.3
phpmyfaq phpmyfaq 2.5.3
phpmyfaq phpmyfaq 2.6.8
phpmyfaq phpmyfaq 2.6.17
phpmyfaq phpmyfaq 1.4.6
phpmyfaq phpmyfaq 2.8.4
phpmyfaq phpmyfaq 1.2.1
phpmyfaq phpmyfaq 2.6.5
phpmyfaq phpmyfaq 1.2.4
phpmyfaq phpmyfaq 2.6.3
phpmyfaq phpmyfaq 2.6.11
phpmyfaq phpmyfaq 2.0.13
phpmyfaq phpmyfaq 2.0.16
phpmyfaq phpmyfaq 2.6.1
phpmyfaq phpmyfaq 1.4.3
phpmyfaq phpmyfaq 1.5.1
phpmyfaq phpmyfaq 1.3.10
phpmyfaq phpmyfaq 2.7.1
phpmyfaq phpmyfaq 2.7.7
phpmyfaq phpmyfaq 1.5.9
phpmyfaq phpmyfaq 1.6.3
phpmyfaq phpmyfaq 1.3.0
phpmyfaq phpmyfaq 2.5.5
phpmyfaq phpmyfaq 1.2.5b
phpmyfaq phpmyfaq 2.5.0
phpmyfaq phpmyfaq 1.1.1
phpmyfaq phpmyfaq 2.0.4
phpmyfaq phpmyfaq 1.5.0
phpmyfaq phpmyfaq 2.0.14
phpmyfaq phpmyfaq 1.4.0a
phpmyfaq phpmyfaq 2.0.0
phpmyfaq phpmyfaq 2.8.3
phpmyfaq phpmyfaq *
phpmyfaq phpmyfaq 1.5.5
phpmyfaq phpmyfaq 1.6.7
phpmyfaq phpmyfaq 2.6.15
phpmyfaq phpmyfaq 1.6.1
phpmyfaq phpmyfaq 2.0.5
phpmyfaq phpmyfaq 2.7.3
phpmyfaq phpmyfaq 2.7.6
phpmyfaq phpmyfaq 2.0.15
phpmyfaq phpmyfaq 1.2.5
phpmyfaq phpmyfaq 2.5.4
phpmyfaq phpmyfaq 1.3.6
phpmyfaq phpmyfaq 1.6.4
phpmyfaq phpmyfaq 2.6.9
phpmyfaq phpmyfaq 2.0.8
phpmyfaq phpmyfaq 1.3.14
phpmyfaq phpmyfaq 1.6.8
phpmyfaq phpmyfaq 1.4.11
phpmyfaq phpmyfaq 1.0
phpmyfaq phpmyfaq 1.4.2
phpmyfaq phpmyfaq 2.6.13
phpmyfaq phpmyfaq 1.5.2
phpmyfaq phpmyfaq 1.6.9
phpmyfaq phpmyfaq 2.7.9
phpmyfaq phpmyfaq 1.4.9
phpmyfaq phpmyfaq 2.0.12
phpmyfaq phpmyfaq 1.6.10
phpmyfaq phpmyfaq 1.6.12
phpmyfaq phpmyfaq 2.0.11
phpmyfaq phpmyfaq 2.6.7
phpmyfaq phpmyfaq 1.2.2
phpmyfaq phpmyfaq 1.2.5a
phpmyfaq phpmyfaq 1.6.11
phpmyfaq phpmyfaq 2.6.18
phpmyfaq phpmyfaq 2.6.6
phpmyfaq phpmyfaq 1.3.7
phpmyfaq phpmyfaq 1.3.1
phpmyfaq phpmyfaq 2.6.16
phpmyfaq phpmyfaq 2.5.6
phpmyfaq phpmyfaq 1.1.4a
phpmyfaq phpmyfaq 1.5.7
CVE-2014-0814 MEDIUM

Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 1.4.10
phpmyfaq phpmyfaq 2.6.0
phpmyfaq phpmyfaq 1.6.5
phpmyfaq phpmyfaq 1.6.6
phpmyfaq phpmyfaq 2.8.0
phpmyfaq phpmyfaq 1.1.3
phpmyfaq phpmyfaq 1.3.3
phpmyfaq phpmyfaq 2.6.14
phpmyfaq phpmyfaq 1.4.1
phpmyfaq phpmyfaq 2.5.7
phpmyfaq phpmyfaq 1.3.2
phpmyfaq phpmyfaq 1.4.7
phpmyfaq phpmyfaq 2.0.9
phpmyfaq phpmyfaq 1.3.11
phpmyfaq phpmyfaq 1.3.8
phpmyfaq phpmyfaq 2.0.2
phpmyfaq phpmyfaq 2.0.10
phpmyfaq phpmyfaq 2.7.5
phpmyfaq phpmyfaq 2.7.2
phpmyfaq phpmyfaq 2.0.17
phpmyfaq phpmyfaq 1.4.0
phpmyfaq phpmyfaq 2.8.2
phpmyfaq phpmyfaq 2.5.2
phpmyfaq phpmyfaq 1.5.3
phpmyfaq phpmyfaq 1.6.0
phpmyfaq phpmyfaq 2.7.0
phpmyfaq phpmyfaq 1.1.2
phpmyfaq phpmyfaq 1.1.4
phpmyfaq phpmyfaq 1.4.5
phpmyfaq phpmyfaq 1.2.3
phpmyfaq phpmyfaq 2.6.4
phpmyfaq phpmyfaq 2.0.6
phpmyfaq phpmyfaq 1.4.4
phpmyfaq phpmyfaq 1.5
phpmyfaq phpmyfaq 2.6.12
phpmyfaq phpmyfaq 2.7.8
phpmyfaq phpmyfaq 1.3.9
phpmyfaq phpmyfaq 1.4.8
phpmyfaq phpmyfaq 1.0.1a
phpmyfaq phpmyfaq 1.3.5
phpmyfaq phpmyfaq 1.0.1
phpmyfaq phpmyfaq 1.3.13
phpmyfaq phpmyfaq 1.5.4
phpmyfaq phpmyfaq 1.6.2
phpmyfaq phpmyfaq 1.5.6
phpmyfaq phpmyfaq 2.0.1
phpmyfaq phpmyfaq 1.2.0
phpmyfaq phpmyfaq 1.3.4
phpmyfaq phpmyfaq 2.6.2
phpmyfaq phpmyfaq 2.6.10
phpmyfaq phpmyfaq 2.8.1
phpmyfaq phpmyfaq 1.5.8
phpmyfaq phpmyfaq 2.0.7
phpmyfaq phpmyfaq 2.5.1
phpmyfaq phpmyfaq 1.1.5
phpmyfaq phpmyfaq 2.7.4
phpmyfaq phpmyfaq 1.4
phpmyfaq phpmyfaq 1.1.0
phpmyfaq phpmyfaq 1.3.12
phpmyfaq phpmyfaq 2.0.3
phpmyfaq phpmyfaq 2.5.3
phpmyfaq phpmyfaq 2.6.8
phpmyfaq phpmyfaq 2.6.17
phpmyfaq phpmyfaq 1.4.6
phpmyfaq phpmyfaq 2.8.4
phpmyfaq phpmyfaq 1.2.1
phpmyfaq phpmyfaq 2.6.5
phpmyfaq phpmyfaq 1.2.4
phpmyfaq phpmyfaq 2.6.3
phpmyfaq phpmyfaq 2.6.11
phpmyfaq phpmyfaq 2.0.13
phpmyfaq phpmyfaq 2.0.16
phpmyfaq phpmyfaq 2.6.1
phpmyfaq phpmyfaq 1.4.3
phpmyfaq phpmyfaq 1.5.1
phpmyfaq phpmyfaq 1.3.10
phpmyfaq phpmyfaq 2.7.1
phpmyfaq phpmyfaq 2.7.7
phpmyfaq phpmyfaq 1.5.9
phpmyfaq phpmyfaq 1.6.3
phpmyfaq phpmyfaq 1.3.0
phpmyfaq phpmyfaq 2.5.5
phpmyfaq phpmyfaq 1.2.5b
phpmyfaq phpmyfaq 2.5.0
phpmyfaq phpmyfaq 1.1.1
phpmyfaq phpmyfaq 2.0.4
phpmyfaq phpmyfaq 1.5.0
phpmyfaq phpmyfaq 2.0.14
phpmyfaq phpmyfaq 1.4.0a
phpmyfaq phpmyfaq 2.0.0
phpmyfaq phpmyfaq 2.8.3
phpmyfaq phpmyfaq *
phpmyfaq phpmyfaq 1.5.5
phpmyfaq phpmyfaq 1.6.7
phpmyfaq phpmyfaq 2.6.15
phpmyfaq phpmyfaq 1.6.1
phpmyfaq phpmyfaq 2.0.5
phpmyfaq phpmyfaq 2.7.3
phpmyfaq phpmyfaq 2.7.6
phpmyfaq phpmyfaq 2.0.15
phpmyfaq phpmyfaq 1.2.5
phpmyfaq phpmyfaq 2.5.4
phpmyfaq phpmyfaq 1.3.6
phpmyfaq phpmyfaq 1.6.4
phpmyfaq phpmyfaq 2.6.9
phpmyfaq phpmyfaq 2.0.8
phpmyfaq phpmyfaq 1.3.14
phpmyfaq phpmyfaq 1.6.8
phpmyfaq phpmyfaq 1.4.11
phpmyfaq phpmyfaq 1.0
phpmyfaq phpmyfaq 1.4.2
phpmyfaq phpmyfaq 2.6.13
phpmyfaq phpmyfaq 1.5.2
phpmyfaq phpmyfaq 1.6.9
phpmyfaq phpmyfaq 2.7.9
phpmyfaq phpmyfaq 1.4.9
phpmyfaq phpmyfaq 2.0.12
phpmyfaq phpmyfaq 1.6.10
phpmyfaq phpmyfaq 1.6.12
phpmyfaq phpmyfaq 2.0.11
phpmyfaq phpmyfaq 2.6.7
phpmyfaq phpmyfaq 1.2.2
phpmyfaq phpmyfaq 1.2.5a
phpmyfaq phpmyfaq 1.6.11
phpmyfaq phpmyfaq 2.6.18
phpmyfaq phpmyfaq 2.6.6
phpmyfaq phpmyfaq 1.3.7
phpmyfaq phpmyfaq 1.3.1
phpmyfaq phpmyfaq 2.6.16
phpmyfaq phpmyfaq 2.5.6
phpmyfaq phpmyfaq 1.1.4a
phpmyfaq phpmyfaq 1.5.7
CVE-2014-6045 MEDIUM

SQL injection vulnerability in phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to execute arbitrary SQL commands via vectors involving the restore function.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2014-6046 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in phpMyFAQ before 2.8.13 allow remote attackers to hijack the authentication of unspecified users for requests that (1) delete active users by leveraging improper validation of CSRF tokens or that (2) delete open questions, (3) activate users, (4) publish FAQs, (5) add or delete Glossary, (6) add or delete FAQ news, or (7) add or delete comments or add votes by leveraging lack of a CSRF token.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2014-6047 MEDIUM

phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to read arbitrary attachments by leveraging incorrect "download an attachment" permission checks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-275,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2014-6048 MEDIUM

phpMyFAQ before 2.8.13 allows remote attackers to read arbitrary attachments via a direct request.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2014-6049 MEDIUM

phpMyFAQ before 2.8.13 allows remote authenticated users with admin privileges to bypass authorization via a crafted instance ID parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-285,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2014-6050 MEDIUM

phpMyFAQ before 2.8.13 allows remote attackers to bypass the CAPTCHA protection mechanism by replaying the request.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-11187 MEDIUM

phpMyFAQ before 2.9.8 does not properly mitigate brute-force attacks that try many passwords in attempted logins quickly.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-307,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-14618 LOW

Cross-site scripting (XSS) vulnerability in inc/PMF/Faq.php in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the Questions field in an "Add New FAQ" action.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-14619 MEDIUM

Cross-site scripting (XSS) vulnerability in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the "Title of your FAQ" field in the Configuration Module.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15727 LOW

In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via an HTML attachment.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15728 LOW

In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via metaDescription or metaKeywords.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15729 MEDIUM

In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for adding a glossary.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15730 MEDIUM

In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.ratings.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15731 MEDIUM

In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.adminlog.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15732 MEDIUM

In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/news.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15733 MEDIUM

In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/ajax.attachment.php and admin/att.main.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15734 MEDIUM

In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.main.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15735 MEDIUM

In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for modifying a glossary.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15808 MEDIUM

In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-15809 MEDIUM

In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2017-7579 MEDIUM

inc/PMF/Faq.php in phpMyFAQ before 2.9.7 has XSS in the question field.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2018-16650 MEDIUM

phpMyFAQ before 2.9.11 allows CSRF.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2018-16651 HIGH

The admin backend in phpMyFAQ before 2.9.11 allows CSV injection in reports.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-1236,

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2022-3608

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-alpha.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.4 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H 1.7 6.0

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2022-3754

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.8.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2022-3765

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.8.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2022-3766

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2022-4407

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2022-4408

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.9.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2022-4409

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0306

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0307

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.10.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0308

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0309

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0310

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0311

Improper Authentication in GitHub repository thorsten/phpmyfaq prior to 3.1.10.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0312

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0313

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.10.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0314

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.10.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0786

Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0787

Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0788

Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0789

Command Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0790

Uncaught Exception in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0791

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0792

Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N 2.8 2.5

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0793

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0794

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-0880

Misinterpretation of Input in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1753

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1754

Improper Neutralization of Input During Web Page Generation in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1755

Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1756

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1757

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1758

Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1759

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1760

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1761

Cross-site Scripting in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1762

Improper Privilege Management in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1875

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1878

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1879

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1880

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1882

Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1883

Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N 2.8 2.5

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1884

Cross-site Scripting (XSS) - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1885

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1886

Authentication Bypass by Capture-replay in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-1887

Business Logic Errors in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-2427

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.13.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-2428

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-2429

Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.13.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-2550

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-2752

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
phpmyfaq phpmyfaq 3.2.0
CVE-2023-2753

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
phpmyfaq phpmyfaq 3.2.0
CVE-2023-2998

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-2999

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-3469

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.2.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
phpmyfaq phpmyfaq 3.2.0
CVE-2023-4006

Improper Neutralization of Formula Elements in a CSV File in GitHub repository thorsten/phpmyfaq prior to 3.1.16.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-4007

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.16.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-5227

Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq prior to 3.1.8.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-5316

Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-5317

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.18.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-5319

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.18.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-5320

Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-53929

phpMyFAQ 3.1.12 contains a CSV injection vulnerability that allows authenticated users to inject malicious formulas into their profile names. Attackers can modify their user profile name with a payload like 'calc|a!z|' to trigger code execution when an administrator exports user data as a CSV file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
disclosure@vulncheck.com 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 3.1.12
CVE-2023-5863

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.2.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-5864

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.1.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-5865

Insufficient Session Expiration in GitHub repository thorsten/phpmyfaq prior to 3.2.2.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-5866

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.2.1.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N 2.1 3.6

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-5867

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.2.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-6889

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.17.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2023-6890

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.17.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2024-22202

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. phpMyFAQ's user removal page allows an attacker to spoof another user's detail, and in turn make a compelling phishing case for removing another user's account. The front-end of this page doesn't allow changing the form details, an attacker can utilize a proxy to intercept this request and submit other data. Upon submitting this form, an email is sent to the administrator informing them that this user wants to delete their account. An administrator has no way of telling the difference between the actual user wishing to delete their account or the attacker issuing this for an account they do not control. This issue has been patched in version 3.2.5.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 5.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H 2.1 3.6
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2024-22208

phpMyFAQ is an Open Source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. The 'sharing FAQ' functionality allows any unauthenticated actor to misuse the phpMyFAQ application to send arbitrary emails to a large range of targets. The phpMyFAQ application has a functionality where anyone can share a FAQ item to others. The front-end of this functionality allows any phpMyFAQ articles to be shared with 5 email addresses. Any unauthenticated actor can perform this action. There is a CAPTCHA in place, however the amount of people you email with a single request is not limited to 5 by the backend. An attacker can thus solve a single CAPTCHA and send thousands of emails at once. An attacker can utilize the target application's email server to send phishing messages. This can get the server on a blacklist, causing all emails to end up in spam. It can also lead to reputation damages. This issue has been patched in version 3.2.5.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L 3.9 2.5
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L 3.9 2.5

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2024-24574

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. Unsafe echo of filename in phpMyFAQ\phpmyfaq\admin\attachments.php leads to allowed execution of JavaScript code in client side (XSS). This vulnerability has been patched in version 3.2.5.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L 3.9 2.5
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2024-27299

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. A SQL injection vulnerability has been discovered in the the "Add News" functionality due to improper escaping of the email address. This allows any authenticated user with the rights to add/edit FAQ news to exploit this vulnerability to exfiltrate data, take over accounts and in some cases, even achieve RCE. The vulnerable field lies in the `authorEmail` field which uses PHP's `FILTER_VALIDATE_EMAIL` filter. This filter is insufficient in protecting against SQL injection attacks and should still be properly escaped. However, in this version of phpMyFAQ (3.2.5), this field is not escaped properly can be used together with other fields to fully exploit the SQL injection vulnerability. This vulnerability is fixed in 3.2.6.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 3.2.5
CVE-2024-27300

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. The `email` field in phpMyFAQ's user control panel page is vulnerable to stored XSS attacks due to the inadequacy of PHP's `FILTER_VALIDATE_EMAIL` function, which only validates the email format, not its content. This vulnerability enables an attacker to execute arbitrary client-side JavaScript within the context of another user's phpMyFAQ session. This vulnerability is fixed in 3.2.6.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 5.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L 2.1 3.4

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 3.2.5
CVE-2024-28105

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. The category image upload function in phpmyfaq is vulnerable to manipulation of the `Content-type` and `lang` parameters, allowing attackers to upload malicious files with a .php extension, potentially leading to remote code execution (RCE) on the system. This vulnerability is fixed in 3.2.6.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 3.2.5
CVE-2024-28106

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. By manipulating the news parameter in a POST request, an attacker can inject malicious JavaScript code. Upon browsing to the compromised news page, the XSS payload triggers. This vulnerability is fixed in 3.2.6.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L 0.9 3.4

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 3.2.5
CVE-2024-28107

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. A SQL injection vulnerability has been discovered in the `insertentry` & `saveentry` when modifying records due to improper escaping of the email address. This allows any authenticated user with the rights to add/edit FAQ news to exploit this vulnerability to exfiltrate data, take over accounts and in some cases, even achieve RCE. This vulnerability is fixed in 3.2.6.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 3.2.5
CVE-2024-28108

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. Due to insufficient validation on the `contentLink` parameter, it is possible for unauthenticated users to inject HTML code to the page which might affect other users. _Also, requires that adding new FAQs is allowed for guests and that the admin doesn't check the content of a newly added FAQ._ This vulnerability is fixed in 3.2.6.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N 1.6 2.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 3.2.5
CVE-2024-29179

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. An attacker with admin privileges can upload an attachment containing JS code without extension and the application will render it as HTML which allows for XSS attacks.

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 3.2.5
CVE-2024-29196

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. There is a Path Traversal vulnerability in Attachments that allows attackers with admin rights to upload malicious files to other locations of the web root. This vulnerability is fixed in 3.2.6.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 3.8 LOW CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N 1.2 2.5

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 3.2.5
CVE-2024-54141

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. Prior to 4.0.0, phpMyFAQ exposes the database (ie postgreSQL) server's credential when connection to DB fails. This vulnerability is fixed in 4.0.0.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 8.6 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L 3.9 4.7

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 4.0.0
CVE-2024-55889

phpMyFAQ is an open source FAQ web application. Prior to version 3.2.10, a vulnerability exists in the FAQ Record component where a privileged attacker can trigger a file download on a victim's machine upon page visit by embedding it in an <iframe> element without user interaction or explicit consent. Version 3.2.10 fixes the issue.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N 1.2 3.6

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2024-56199

phpMyFAQ is an open source FAQ web application. Starting no later than version 3.2.10 and prior to version 4.0.2, an attacker can inject malicious HTML content into the FAQ editor at `http[:]//localhost/admin/index[.]php?action=editentry`, resulting in a complete disruption of the FAQ page's user interface. By injecting malformed HTML elements styled to cover the entire screen, an attacker can render the page unusable. This injection manipulates the page structure by introducing overlapping buttons, images, and iframes, breaking the intended layout and functionality. Exploiting this issue can lead to Denial of Service for legitimate users, damage to the user experience, and potential abuse in phishing or defacement attacks. Version 4.0.2 contains a patch for the vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 5.2 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:L 0.9 4.2

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2025-59943

phpMyFAQ is an open source FAQ web application. Versions 4.0-nightly-2025-10-03 and below do not enforce uniqueness of email addresses during user registration. This allows multiple distinct accounts to be created with the same email. Because email is often used as an identifier for password resets, notifications, and administrative actions, this flaw can cause account ambiguity and, in certain configurations, may lead to privilege escalation or account takeover. This issue is fixed in version 4.0.13.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
security-advisories@github.com 8.1 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N 2.8 5.2

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq 4.0.7
CVE-2025-62519

phpMyFAQ is an open source FAQ web application. Prior to version 4.0.14, an authenticated SQL injection vulnerability in the main configuration update functionality of phpMyFAQ allows a privileged user with 'Configuration Edit' permissions to execute arbitrary SQL commands. Successful exploitation can lead to a full compromise of the database, including reading, modifying, or deleting all data, as well as potential remote code execution depending on the database configuration. This issue has been patched in version 4.0.14.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2025-68951

phpMyFAQ is an open source FAQ web application. Versions 4.0.14 and 4.0.15 have a stored cross-site scripting (XSS) vulnerability that allows an attacker to execute arbitrary JavaScript in an administrator’s browser by registering a user whose display name contains HTML entities. When an administrator views the admin user list, the payload is decoded server-side and rendered without escaping, resulting in script execution in the admin context. Version 4.0.16 contains a patch for the issue.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 2.8 2.5

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
phpmyfaq phpmyfaq 4.1.0
CVE-2025-69200

phpMyFAQ is an open source FAQ web application. In versions prior to 4.0.16, an unauthenticated remote attacker can trigger generation of a configuration backup ZIP via `POST /api/setup/backup` and then download the generated ZIP from a web-accessible location. The ZIP contains sensitive configuration files (e.g., `database.php` with database credentials), leading to high-impact information disclosure and potential follow-on compromise. Version 4.0.16 fixes the issue.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
phpmyfaq phpmyfaq 4.1.0
CVE-2026-24420

phpMyFAQ is an open source FAQ web application. Versions 4.0.16 and below allow an authenticated user without the dlattachment permission to download FAQ attachments due to a incomprehensive permissions check. The presence of a right key is improperly validated as proof of authorization in attachment.php. Additionally, the group and user permission logic contains a flawed conditional expression that may allow unauthorized access. This issue has been fixed in version

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2026-24421

phpMyFAQ is an open source FAQ web application. Versions 4.0.16 and below have flawed authorization logic which exposes the /api/setup/backup endpoint to any authenticated user despite their permissions. SetupController.php uses userIsAuthenticated() but does not verify that the requester has configuration/admin permissions. Non-admin users can trigger a configuration backup and retrieve its path. The endpoint only checks authentication, not authorization, and returns a link to the generated ZIP. This issue is fixed in version 4.0.17.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2026-24422

phpMyFAQ is an open source FAQ web application. In versions 4.0.16 and below, multiple public API endpoints improperly expose sensitive user information due to insufficient access controls. The OpenQuestionController::list() endpoint calls Question::getAll() with showAll=true by default, returning records marked as non-public (isVisible=false) along with user email addresses, with similar exposures present in comment, news, and FAQ APIs. This information disclosure vulnerability could enable attackers to harvest email addresses for phishing campaigns or access content that was explicitly marked as private. This issue has been fixed in version 4.0.17.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *
CVE-2026-27836

phpMyFAQ is an open source FAQ web application. Prior to version 4.0.18, the WebAuthn prepare endpoint (`/api/webauthn/prepare`) creates new active user accounts without any authentication, CSRF protection, captcha, or configuration checks. This allows unauthenticated attackers to create unlimited user accounts even when registration is disabled. Version 4.0.18 fixes the issue.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
security-advisories@github.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
phpmyfaq phpmyfaq *