WEB APPLICATION VULNERABILITIES Standard & Premium

phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-6889)

Description

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.17.

Remediation

References

Related Vulnerabilities

WordPress Plugin WP Content Filter Unspecified Vulnerability (2.42)

WordPress Plugin WP ALL Export Pro Multiple Vulnerabilities (1.7.8)

Apache Tomcat version older than 6.0.16

WordPress Plugin WP Google Maps Unspecified Vulnerability (8.0.25)

WordPress Plugin WP e-Commerce-Clockwork SMS Cross-Site Scripting (2.0.5)

Severity

Medium

Classification

CVE-2023-6889 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities