Filter
AND

Versions

2.9.7
1

composer/thorsten/phpmyfaqInsufficient Session Expiration in thorsten/phpmyfaq

critical
9.8
EPSS
0.09%
First published (updated )
CVE-2023-5865

composer/thorsten/phpmyfaqCross-site Scripting (XSS) - DOM in thorsten/phpmyfaq

critical
9
First published (updated )
CVE-2023-5320

composer/thorsten/phpmyfaqCross-site Scripting (XSS) - DOM in thorsten/phpmyfaq

critical
9.1
First published (updated )
CVE-2023-5316

composer/thorsten/phpmyfaqUnrestricted Upload of File with Dangerous Type in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2023-5227

composer/thorsten/phpmyfaqImproper Neutralization of Formula Elements in a CSV File in thorsten/phpmyfaq

critical
9.8
EPSS
0.09%
First published (updated )
CVE-2023-4006

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

composer/thorsten/phpmyfaqImproper Access Control in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2023-2429

phpMyFAQAuthentication Bypass by Capture-replay in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2023-1886

phpMyFAQWeak Password Requirements in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2023-1753

phpMyFAQCode Injection in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2023-0788

phpMyFAQCommand Injection in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2023-0789

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpMyFAQCross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

critical
9.1
First published (updated )
CVE-2023-0306

phpMyFAQCross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2023-0310

phpMyFAQImproper Authentication in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2023-0311

phpMyFAQWeak Password Requirements in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2023-0307

phpMyFAQCross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2022-4407

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpMyFAQWeak Password Requirements in thorsten/phpmyfaq

critical
9.8
First published (updated )
CVE-2022-3754

phpMyFAQThe admin backend in phpMyFAQ before 2.9.11 allows CSV injection in reports.

critical
9
First published (updated )
CVE-2018-16651

phpMyFAQphpMyFAQ before 2.9.8 does not properly mitigate brute-force attacks that try many passwords in atte…

critical
9.8
First published (updated )
CVE-2017-11187

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203