Vulnerabilities > Phpmyfaq

DATE	CVE	VULNERABILITY TITLE	RISK
2017-10-22	CVE-2017-15735	Cross-Site Request Forgery (CSRF) vulnerability in PHPmyfaq In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for modifying a glossary. network low complexity phpmyfaq CWE-352	8.8
2017-10-22	CVE-2017-15734	Cross-Site Request Forgery (CSRF) vulnerability in PHPmyfaq In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.main.php. network low complexity phpmyfaq CWE-352	8.8
2017-10-22	CVE-2017-15733	Cross-Site Request Forgery (CSRF) vulnerability in PHPmyfaq In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/ajax.attachment.php and admin/att.main.php. network low complexity phpmyfaq CWE-352	8.8
2017-10-22	CVE-2017-15732	Cross-Site Request Forgery (CSRF) vulnerability in PHPmyfaq In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/news.php. network low complexity phpmyfaq CWE-352	8.8
2017-10-22	CVE-2017-15731	Cross-Site Request Forgery (CSRF) vulnerability in PHPmyfaq In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.adminlog.php. network low complexity phpmyfaq CWE-352	8.8
2017-10-22	CVE-2017-15730	Cross-Site Request Forgery (CSRF) vulnerability in PHPmyfaq In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.ratings.php. network low complexity phpmyfaq CWE-352	8.8
2017-10-22	CVE-2017-15729	Cross-Site Request Forgery (CSRF) vulnerability in PHPmyfaq In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) for adding a glossary. network low complexity phpmyfaq CWE-352	8.8
2017-10-22	CVE-2017-15728	Cross-site Scripting vulnerability in PHPmyfaq In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via metaDescription or metaKeywords. network low complexity phpmyfaq CWE-79	4.8
2017-10-22	CVE-2017-15727	Cross-site Scripting vulnerability in PHPmyfaq In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via an HTML attachment. network low complexity phpmyfaq CWE-79	5.4
2017-09-20	CVE-2017-14619	Cross-site Scripting vulnerability in PHPmyfaq Cross-site scripting (XSS) vulnerability in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the "Title of your FAQ" field in the Configuration Module. network low complexity phpmyfaq CWE-79	6.1

Vulnerabilities > Phpmyfaq {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Phpmyfaq"}]}

Vulnerabilities > Phpmyfaq