cbcvebase.

Thorsten Phpmyfaq vulnerabilities

69 known vulnerabilities affecting thorsten/thorsten_phpmyfaq.

Total CVEs
69
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL11HIGH5MEDIUM53

Vulnerabilities

Page 1 of 4
CVE-2022-3766P3MEDIUMCVSS 6.1PoC≥ unspecified, < 3.1.82022-10-31
CVE-2022-3766 [MEDIUM] CWE-79 CVE-2022-3766: Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8. Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
nvd
CVE-2022-4407P3MEDIUMCVSS 6.1PoC≥ unspecified, < 3.1.92022-12-11
CVE-2022-4407 [MEDIUM] CWE-79 CVE-2022-4407: Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9. Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
nvd
CVE-2023-1880P3MEDIUMCVSS 6.1PoC≥ unspecified, < 3.1.122023-04-05
CVE-2023-1880 [MEDIUM] CWE-79 CVE-2023-1880: Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.12. Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.12.
nvd
CVE-2023-5863P3MEDIUMCVSS 6.1PoC≥ unspecified, < 3.2.22023-10-31
CVE-2023-5863 [MEDIUM] CWE-79 CVE-2023-5863: Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.2. Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.2.
nvd
CVE-2023-0789P3CRITICALCVSS 9.8≥ unspecified, < 3.1.112023-02-12
CVE-2023-0789 [CRITICAL] CWE-77 CVE-2023-0789: Command Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. Command Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11.
nvd
CVE-2023-1886P3CRITICALCVSS 9.8≥ unspecified, < 3.1.122023-04-05
CVE-2023-1886 [CRITICAL] CWE-294 CVE-2023-1886: Authentication Bypass by Capture-replay in GitHub repository thorsten/phpmyfaq prior to 3.1.12. Authentication Bypass by Capture-replay in GitHub repository thorsten/phpmyfaq prior to 3.1.12.
nvd
CVE-2023-0311P3CRITICALCVSS 9.8≥ unspecified, < 3.1.102023-01-15
CVE-2023-0311 [CRITICAL] CWE-287 CVE-2023-0311: Improper Authentication in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Improper Authentication in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
nvd
CVE-2023-5227P3CRITICALCVSS 9.8≥ unspecified, < 3.1.82023-09-30
CVE-2023-5227 [CRITICAL] CWE-434 CVE-2023-5227: Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq prior to 3.1. Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
nvd
CVE-2023-0788P3CRITICALCVSS 9.8≥ unspecified, < 3.1.112023-02-12
CVE-2023-0788 [CRITICAL] CWE-94 CVE-2023-0788: Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11. Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.11.
nvd
CVE-2023-2429P3CRITICALCVSS 9.8≥ unspecified, < 3.1.132023-04-30
CVE-2023-2429 [CRITICAL] CWE-284 CVE-2023-2429: Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.13. Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.13.
nvd
CVE-2023-1762P3HIGHCVSS 8.8≥ unspecified, < 3.1.122023-03-31
CVE-2023-1762 [HIGH] CWE-269 CVE-2023-1762: Improper Privilege Management in GitHub repository thorsten/phpmyfaq prior to 3.1.12. Improper Privilege Management in GitHub repository thorsten/phpmyfaq prior to 3.1.12.
nvd
CVE-2023-0793P3HIGHCVSS 8.8≥ unspecified, < 3.1.112023-02-12
CVE-2023-0793 [HIGH] CWE-521 CVE-2023-0793: Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.11. Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.11.
nvd
CVE-2023-1753P3CRITICALCVSS 9.8≥ unspecified, < 3.1.122023-03-31
CVE-2023-1753 [CRITICAL] CWE-521 CVE-2023-1753: Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.12. Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.12.
nvd
CVE-2023-0307P3CRITICALCVSS 9.8≥ unspecified, < 3.1.102023-01-15
CVE-2023-0307 [CRITICAL] CWE-521 CVE-2023-0307: Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.10. Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.10.
nvd
CVE-2023-4006P3CRITICALCVSS 9.8≥ unspecified, < 3.1.162023-07-31
CVE-2023-4006 [CRITICAL] CWE-1236 CVE-2023-4006: Improper Neutralization of Formula Elements in a CSV File in GitHub repository thorsten/phpmyfaq pri Improper Neutralization of Formula Elements in a CSV File in GitHub repository thorsten/phpmyfaq prior to 3.1.16.
nvd
CVE-2023-0790P3HIGHCVSS 8.8≥ unspecified, < 3.1.112023-02-12
CVE-2023-0790 [HIGH] CWE-248 CVE-2023-0790: Uncaught Exception in GitHub repository thorsten/phpmyfaq prior to 3.1.11. Uncaught Exception in GitHub repository thorsten/phpmyfaq prior to 3.1.11.
nvd
CVE-2022-3754P3CRITICALCVSS 9.8≥ unspecified, < 3.1.82022-10-29
CVE-2022-3754 [CRITICAL] CWE-521 CVE-2022-3754: Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.8. Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
nvd
CVE-2023-5865P4CRITICALCVSS 9.8≥ unspecified, < 3.2.22023-10-31
CVE-2023-5865 [CRITICAL] CWE-613 CVE-2023-5865: Insufficient Session Expiration in GitHub repository thorsten/phpmyfaq prior to 3.2.2. Insufficient Session Expiration in GitHub repository thorsten/phpmyfaq prior to 3.2.2.
nvd
CVE-2022-4409P4HIGHCVSS 7.5≥ unspecified, < 3.1.92022-12-11
CVE-2022-4409 [HIGH] CWE-614 CVE-2022-4409: Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9.
nvd
CVE-2022-3608P4HIGHCVSS 8.4≥ unspecified, < 3.2.0-alpha2022-10-19
CVE-2022-3608 [HIGH] CWE-79 CVE-2022-3608: Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-alpha. Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-alpha.
nvd
Thorsten Phpmyfaq vulnerabilities | cvebase