Security: thorsten/phpMyFAQ
Security Advisories
View known security vulnerabilities and report new vulnerabilities privately to maintainers.
-
Path Traversal in AttachmentsGHSA-mmh6-5cpf-2c72 published
Mar 25, 2024 by thorstenLow -
Stored XSS at File AttachmentsGHSA-hm8r-95g3-5hj9 published
Mar 25, 2024 by thorstenModerate -
Stored HTML Injection at contentLinkGHSA-48vw-jpf8-hwqh published
Mar 25, 2024 by thorstenLow -
SQL injections at insertentry & saveentryGHSA-2grw-mc9r-822r published
Mar 25, 2024 by thorstenHigh -
Stored XSS at FAQ News ContentGHSA-6p68-36m6-392r published
Mar 25, 2024 by thorstenModerate -
File Upload Bypass at Category Image Leads to RCEGHSA-pwh2-fpfr-x5gf published
Mar 25, 2024 by thorstenHigh -
Stored XSS at user emailGHSA-q7g6-xfh2-vhpx published
Mar 25, 2024 by thorstenModerate -
SQL Injection at "Save News"GHSA-qgxx-4xv5-6hcw published
Mar 25, 2024 by thorstenHigh -
phpmyfaq store XSS on attachments filenameGHSA-7m8g-fprr-47fx published
Feb 5, 2024 by thorstenModerate -
Sharing FAQ functionality can easily be abused for phishing purposesGHSA-9hhf-xmcw-r3xg published
Feb 5, 2024 by thorstenModerate