Description

Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.6.9 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.php.

Remediation

References

CVE-2010-4821

Related Vulnerabilities

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-2889)

WebLogic CVE-2008-2578 Vulnerability (CVE-2008-2578)

Drupal Core 5.x Cross-Site Scripting (5.0 - 5.16)

MySQL Other Vulnerability (CVE-2004-0457)

WordPress Plugin Similar Posts-Best Related Posts for WordPress Remote Code Execution (3.1.5)

Severity

Medium

Classification

CVE-2010-4821 CWE-707

Tags

Missing Update Known Vulnerabilities