Description

Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2014-0814

Related Vulnerabilities

WordPress Plugin SearchWP Live Ajax Search Directory Traversal (1.6.2)

WordPress Plugin U BuddyPress Forum Attachment 'fileurl' Parameter Remote File Disclosure (1.1.1)

Internet Information Services CVE-2009-4444 Vulnerability (CVE-2009-4444)

WordPress Plugin Search and Share Cross-Site Scripting (0.9.3)

Ruby on Rails CVE-2015-3227 Vulnerability (CVE-2015-3227)

Severity

Medium

Classification

CVE-2014-0814 CWE-707

Tags

Missing Update Known Vulnerabilities