What is CVE-2023-2753?

CVE-2023-2753 is a vulnerability in the GitHub repository thorsten/phpmyfaq that allows for cross-site scripting (XSS) attacks.

What is the severity of CVE-2023-2753?

CVE-2023-2753 has a severity rating of high, with a score of 5.4.

How does CVE-2023-2753 affect phpMyFAQ?

CVE-2023-2753 affects phpMyFAQ versions prior to 3.2.0-beta, allowing for stored cross-site scripting (XSS) attacks.

How can I fix CVE-2023-2753?

To fix CVE-2023-2753, you should update phpMyFAQ to version 3.2.0-beta or later.

Vulnerability/
CVE-2023-2753

high

7.2

CWE

17/5/2023

2/8/2024

CVE-2023-2753: Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

Q: Where can I find more information about CVE-2023-2753?

You can find more information about CVE-2023-2753 at the following references: [https://github.com/thorsten/phpmyfaq/commit/5401ab75d022932b8d5d7adaa771acf44fed18ba](https://github.com/thorsten/phpmyfaq/commit/5401ab75d022932b8d5d7adaa771acf44fed18ba) and [https://huntr.dev/bounties/eca2284d-e81a-4ab8-91bb-7afeca557628](https://huntr.dev/bounties/eca2284d-e81a-4ab8-91bb-7afeca557628).

First published: Wed May 17 2023(Updated: )

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.

Credit: security@huntr.dev security@huntr.dev

Affected Software	Affected Version	How to fix
Phpmyfaq Phpmyfaq	<3.2.0
Phpmyfaq Phpmyfaq	=3.2.0-alpha
composer/thorsten/phpmyfaq	<3.2.0-beta	3.2.0-beta

Remedy

https://github.com/thorsten/phpmyfaq/commit/5401ab75d022932b8d5d7adaa771acf44fed18ba

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2023-2753?
CVE-2023-2753 is a vulnerability in the GitHub repository thorsten/phpmyfaq that allows for cross-site scripting (XSS) attacks.
What is the severity of CVE-2023-2753?
CVE-2023-2753 has a severity rating of high, with a score of 5.4.
How does CVE-2023-2753 affect phpMyFAQ?
CVE-2023-2753 affects phpMyFAQ versions prior to 3.2.0-beta, allowing for stored cross-site scripting (XSS) attacks.
How can I fix CVE-2023-2753?
To fix CVE-2023-2753, you should update phpMyFAQ to version 3.2.0-beta or later.
Where can I find more information about CVE-2023-2753?
You can find more information about CVE-2023-2753 at the following references: [https://github.com/thorsten/phpmyfaq/commit/5401ab75d022932b8d5d7adaa771acf44fed18ba](https://github.com/thorsten/phpmyfaq/commit/5401ab75d022932b8d5d7adaa771acf44fed18ba) and [https://huntr.dev/bounties/eca2284d-e81a-4ab8-91bb-7afeca557628](https://huntr.dev/bounties/eca2284d-e81a-4ab8-91bb-7afeca557628).

collector/nvd-index
collector/github-advisory-latest
alias/GHSA-vppq-6ff8-2m8w
alias/CVE-2023-2753
collector/nvd-cve
collector/github-advisory
agent/references
agent/author
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/remedy
agent/title
agent/severity
agent/description
agent/tags
agent/event
agent/first-publish-date
vendor/phpmyfaq
canonical/phpmyfaq phpmyfaq
version/phpmyfaq phpmyfaq/3.2.0-alpha
package-manager/composer

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.