Security Advisories - phpmyfaq/phpmyfaq - Packagist

phpmyfaq/phpmyfaq Security Advisories for 3.0.0-beta.3 (4)

[MEDIUM] phpMyFAQ vulnerable to stored XSS on attachments filename

PKSA-hdfq-3r6d-xzjt CVE-2024-24574 GHSA-7m8g-fprr-47fx

Affected version: <3.2.5

Reported by:
GitHub
[MEDIUM] phpMyFAQ sharing FAQ functionality can easily be abused for phishing purposes

PKSA-qfjp-pm9r-s97r CVE-2024-22208 GHSA-9hhf-xmcw-r3xg

Affected version: <3.2.5

Reported by:
GitHub
[MEDIUM] phpMyFAQ User Removal Page Allows Spoofing Of User Details

PKSA-q87w-7ynx-prc4 CVE-2024-22202 GHSA-6648-6g96-mg35

Affected version: <3.2.5

Reported by:
GitHub
[HIGH] phpMyFAQ vulnerable to Cross-site Scripting

PKSA-k57y-tc6t-fmbw CVE-2022-3608 GHSA-6rj8-9cm9-6gff

Affected version: <=3.1.7

Reported by:
GitHub