Vulnerabilities > Phpmyfaq

DATE	CVE	VULNERABILITY TITLE	RISK
2017-10-22	CVE-2017-15727	Cross-site Scripting vulnerability in PHPmyfaq In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via an HTML attachment. network low complexity phpmyfaq CWE-79	5.4
2017-09-20	CVE-2017-14619	Cross-site Scripting vulnerability in PHPmyfaq Cross-site scripting (XSS) vulnerability in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the "Title of your FAQ" field in the Configuration Module. network low complexity phpmyfaq CWE-79	6.1
2017-09-20	CVE-2017-14618	Cross-site Scripting vulnerability in PHPmyfaq Cross-site scripting (XSS) vulnerability in inc/PMF/Faq.php in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the Questions field in an "Add New FAQ" action. network low complexity phpmyfaq CWE-79	4.8
2017-07-12	CVE-2017-11187	Improper Restriction of Excessive Authentication Attempts vulnerability in PHPmyfaq phpMyFAQ before 2.9.8 does not properly mitigate brute-force attacks that try many passwords in attempted logins quickly. network low complexity phpmyfaq CWE-307 critical	9.8
2017-04-07	CVE-2017-7579	Cross-site Scripting vulnerability in PHPmyfaq inc/PMF/Faq.php in phpMyFAQ before 2.9.7 has XSS in the question field. network low complexity phpmyfaq CWE-79	6.1

Vulnerabilities > Phpmyfaq {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Phpmyfaq"}]}