CVE-2022-3766
published 2022-10-31CVE-2022-3766: Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
PriorityP340medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
5.74%
92.1th percentile
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpmyfaq | phpmyfaq | < 3.1.8 | 3.1.8 |
| thorsten | phpmyfaq | >= 0 < 3.1.8 | 3.1.8 |
| thorsten | thorsten_phpmyfaq | >= unspecified < 3.1.8 | 3.1.8 |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv3.07.3HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
phpMyFAQ vulnerable to reflected Cross-site Scripting
ghsa·2022-10-31
CVE-2022-3766 [MEDIUM] CWE-79 phpMyFAQ vulnerable to reflected Cross-site Scripting
phpMyFAQ vulnerable to reflected Cross-site Scripting
phpMyFAQ prior to version 3.1.8 is vulnerable to reflected cross-site scripting.
OSV
phpMyFAQ vulnerable to reflected Cross-site Scripting
osv·2022-10-31
CVE-2022-3766 [MEDIUM] phpMyFAQ vulnerable to reflected Cross-site Scripting
phpMyFAQ vulnerable to reflected Cross-site Scripting
phpMyFAQ prior to version 3.1.8 is vulnerable to reflected cross-site scripting.
No detection rules found.
Exploit-DB
phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)
exploitdb·2025-12-02·CVSS 6.1
CVE-2022-3766 [MEDIUM] phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)
phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)
---
# Exploit Title: phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)
# Date: 2025-11-25
# Exploit Author: CodeSecLab
# Vendor Homepage: https://github.com/thorsten/phpmyfaq/
# Software Link: https://github.com/thorsten/phpmyfaq/
# Version: 3.1.7
# Tested on: Windows
# CVE : CVE-2022-3766
Proof Of Concept
GET http://phpmyfaq1/index.php?action=main&search=%22%20onfocus%3D%22alert%281%29
Additional Conditions:
- Ensure that no security mechanisms (like a web application firewall) are blocking the specific request pattern.
- The application must be running a phpMyFAQ version prior to 3.1.8.
Steps to Reproduce
Log in phpmyfaq.
Send the request.
Observe the result
Nuclei
phpMyFAQ < 3.1.8 - Cross-Site Scripting
nuclei·CVSS 6.1
CVE-2022-3766 [MEDIUM] phpMyFAQ < 3.1.8 - Cross-Site Scripting
phpMyFAQ < 3.1.8 - Cross-Site Scripting
phpMyFAQ versions prior to 3.1.8 contain a reflected cross-site scripting vulnerability in the search functionality. The application fails to properly sanitize user input in the search parameter, allowing attackers to inject and execute malicious JavaScript code in the context of other users' browsers.
Template:
id: CVE-2022-3766
info:
name: phpMyFAQ < 3.1.8 - Cross-Site Scripting
author: ritikchaddha
severity: medium
description: |
phpMyFAQ versions prior to 3.1.8 contain a reflected cross-site scripting vulnerability in the search functionality. The application fails to properly sanitize user input in the search parameter, allowing attackers to inject and execute malicious JavaScript code in the context of other users' browsers.
impact: |
An at
No writeups or analysis indexed.
https://github.com/thorsten/phpmyfaq/commit/c7904f2236c6c0dd64c2226b90c30af0f7e5a72dhttps://huntr.dev/bounties/d9666520-4ff5-43bb-aacf-50c8e5570983https://github.com/MarkLee131/awesome-web-pocs/blob/main/CVE-2022-3766.mdhttps://github.com/thorsten/phpmyfaq/commit/c7904f2236c6c0dd64c2226b90c30af0f7e5a72dhttps://huntr.dev/bounties/d9666520-4ff5-43bb-aacf-50c8e5570983
2022-10-31
Published