CVE-2010-4821
published 2012-10-22CVE-2010-4821: Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.6.9 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.php.
PriorityP424medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
4.74%
90.7th percentile
Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.6.9 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.php.
Affected
106 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpmyfaq | phpmyfaq | <= 2.6.8 | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
| phpmyfaq | phpmyfaq | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://dl.packetstormsecurity.net/1009-exploits/phpmyfaq268-xss.txthttp://seclists.org/bugtraq/2010/Sep/207http://secunia.com/advisories/41625http://www.openwall.com/lists/oss-security/2012/03/08/2http://www.openwall.com/lists/oss-security/2012/03/08/7http://www.osvdb.org/68268http://www.phpmyfaq.de/advisory_2010-09-28.phphttps://exchange.xforce.ibmcloud.com/vulnerabilities/62092http://dl.packetstormsecurity.net/1009-exploits/phpmyfaq268-xss.txthttp://seclists.org/bugtraq/2010/Sep/207http://secunia.com/advisories/41625http://www.openwall.com/lists/oss-security/2012/03/08/2http://www.openwall.com/lists/oss-security/2012/03/08/7http://www.osvdb.org/68268http://www.phpmyfaq.de/advisory_2010-09-28.phphttps://exchange.xforce.ibmcloud.com/vulnerabilities/62092
2012-10-22
Published