Filter
AND

Versions

2.9.8
8
3.2.5
3
1.6.7
2
2.6.11
2
2.6.12
2
3.2.0-alpha
2
2.6.0
1
2.6.1
1
2.6.10
1
2.6.13
1
2.6.14
1
2.6.15
1
2.6.16
1
2.6.17
1
2.6.18
1
2.6.2
1
2.6.3
1
2.6.4
1
2.6.5
1
2.6.6
1
2.6.7
1
2.6.8
1
2.6.9
1
2.7.0
1
3.1.7
1

phpMyFAQCross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

high
7.2
First published (updated )
CVE-2023-2753

phpMyFAQCross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

high
7.2
First published (updated )
CVE-2023-2752

composer/phpmyfaq/phpmyfaqphpMyFAQ SQL Injection at "Save News"

high
8.8
EPSS
0.04%
First published (updated )
CVE-2024-27299

composer/phpmyfaq/phpmyfaqphpMyFAQ's File Upload Bypass at Category Image Leads to RCE

high
7.2
EPSS
0.04%
First published (updated )
CVE-2024-28105

composer/phpmyfaq/phpmyfaqphpMyFAQ SQL injections at insertentry & saveentry

high
8.8
EPSS
0.04%
First published (updated )
CVE-2024-28107

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

composer/thorsten/phpmyfaqCross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq

high
7.4
EPSS
0.05%
First published (updated )
CVE-2023-5863

composer/thorsten/phpmyfaqCross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

high
7.4
EPSS
0.04%
First published (updated )
CVE-2023-5864

composer/thorsten/phpmyfaqCross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

high
8.3
First published (updated )
CVE-2023-5319

composer/thorsten/phpmyfaqCross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

high
8.8
EPSS
0.04%
First published (updated )
CVE-2023-4007

phpMyFAQSensitive Cookie in HTTPS Session Without 'Secure' Attribute in thorsten/phpmyfaq

high
7.5
First published (updated )
CVE-2022-4409

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpMyFAQCSRF

high
8.8
First published (updated )
CVE-2017-15732

phpMyFAQCSRF

high
8.8
First published (updated )
CVE-2017-15733

phpMyFAQCode Injection

high
7.5
First published (updated )
CVE-2010-4558

phpMyFAQCSRF

high
8.8
First published (updated )
CVE-2017-15735

phpletter Ajax File and Image ManagerCode Injection

high
7.5
First published (updated )
CVE-2011-4825

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpMyFAQCSRF

high
8.8
First published (updated )
CVE-2017-15729

phpMyFAQCSRF

high
8.8
First published (updated )
CVE-2017-15734

phpMyFAQSQL Injection

high
7.5
First published (updated )
CVE-2006-6912

phpMyFAQUnspecified vulnerability in phpMyFAQ 1.6.7 and earlier allows remote attackers to upload arbitrary …

high
7.5
First published (updated )
CVE-2006-6913

phpMyFAQSQL Injection

high
7.2
First published (updated )
CVE-2014-6045

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpMyFAQCSRF

high
8.8
First published (updated )
CVE-2014-6046

phpMyFAQCSRF

high
8.8
First published (updated )
CVE-2017-15808

phpMyFAQCSRF

high
8.8
First published (updated )
CVE-2017-15731

phpMyFAQCSRF

high
8.8
First published (updated )
CVE-2017-15730

composer/thorsten/phpmyfaqCSRF

high
8.8
First published (updated )
CVE-2018-16650

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

phpMyFAQCross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq

high
7.3
First published (updated )
CVE-2022-3766

phpMyFAQCross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

high
8.2
First published (updated )
CVE-2022-3765

phpMyFAQCross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

high
8.4
First published (updated )
CVE-2022-3608

composer/thorsten/phpmyfaqCross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

high
8.2
First published (updated )
CVE-2023-2550

phpMyFAQCross-site Scripting (XSS) - DOM in thorsten/phpmyfaq

high
8.1
First published (updated )
CVE-2023-1882

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203