phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability.
341b845511d328e01e97ed403a18ff1aabc3cd35bc0e0eea9412ac77ac089f2fphpMyFAQ version 2.9.9 suffers from an issue where an administrative account can execute arbitrary code on the server by modifying LANG_CONF[main.metaDescription].
a6d03297b6d015d54d53b8b82104789e4468707199c9c312ad5200a4beca9306phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability where an attacker can embed malicious script code in the title of the faq.
2886abf85bb7d159d238a029d4735a38ee38240d0de808755f12e5f6b44da496phpMyFAQ version 2.9.0 suffers from a persistent cross site scripting vulnerability.
689de19daf66f0242804f0df49c4ccacb8627d0a227c57d7faf13fa652c312e3phpMyFAQ versions 2.8.26 and 2.9.0-RC2 suffer from a cross site request forgery vulnerability.
b4b19a666863c0731be2d532693b5b2ccf810e9441b2e6245193a4737cfe146aphpMyFAQ version 2.7.9 remote PHP code injection exploit.
28ef4ddf5dbc1a91285aed596e0f9920e5a063689c5832161b764725803d58b4phpMyFAQ versions 2.7.0 and below remote code execution exploit that leverages ajax_create_folder.php.
ba3e9685c5a69d2b4d1d266c9d15ff200bd3b38ecfe6aab41ad602def5057334Secunia Security Advisory - A vulnerability has been discovered in phpMyFAQ, which can be exploited by malicious users to compromise a vulnerable system.
d8134060f6cf7e86c0f727c8a79c53c33c1b6c2caa82f4288990b6c481b602e3Secunia Security Advisory - A security issue has been reported in phpMyFAQ, which can be exploited by malicious people to compromise a vulnerable system.
113d9c793945a2e625e01719bd3c7d60579bffacd471083be288aca5429a4d0aphpMyFAQ version 2.6.8 suffers from a cross site scripting vulnerability.
bdf113fa510428b3fcf4f236cf53cf6cd6e82e46c5c6b61bde7b36706a89d2d1Secunia Security Advisory - Multiple vulnerabilities have been reported in phpMyFAQ, which can be exploited by malicious people to conduct cross-site scripting attacks.
7498a49f97a797cece60261cc8eb86ac0c02fe198e3a660bcc5711fe85f5a9f5phpMyFAQ versions 2.5.4 and below suffer from cross site scripting vulnerabilities.
295a8c687d620a3ce6e91c5619c7fe37d66845b84f36c8dcaa9295aa53062b3eSecunia Security Advisory - Amol Naik has discovered some vulnerabilities in phpMyFAQ, which can be exploited by malicious people to conduct cross-site scripting attacks.
885dfd1e972e7014877398066b3f0ab9358f38d412b42f3cc4ceaab333f0fa91Secunia Security Advisory - A vulnerability has been reported in phpMyFAQ, which can be exploited by malicious people to conduct cross-site scripting attacks.
ee1d437b432c4fa5152adb9087abc043b8d2c8647c0ecf7878001b57a892a0ddSecunia Security Advisory - A vulnerability has been reported in phpMyFAQ, which can be exploited by malicious people to conduct cross-site scripting attacks.
784a5793787208f1afb34b80c39c316b809df9859f7769994e11260eafe76926Secunia Security Advisory - A vulnerability has been reported in phpMyFAQ, which can be exploited by malicious people to compromise a vulnerable system.
9a1ec566f8cac2f851932bd3daef1f54e45976c2fe779323ffc206db8a9230abSecunia Security Advisory - Tobias Klein has reported some vulnerabilities in phpMyFAQ, which can be exploited by malicious people to conduct script insertion attacks.
1e0be890b61274ac74d5f4efb14819af33e247b3bdbcbdfe3ade36a2a86cfa6eVersions 1.5.3 and below of phpMyFAQ contain multiple persistent cross site scripting vulnerabilities. Exploitation details provided.
1604f67bacec514f508f5c7fc8b04b4dd59120438f0d160be0c7d0947450916dSecunia Security Advisory - rgod has discovered some vulnerabilities in phpMyFAQ, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks, disclose system and sensitive information, and compromise a vulnerable system.
a252003545360d6e5859ca4abbb5acac59aa8f9f3248a3dd298de3424e40a876PhpMyFaq version 1.5.1 is susceptible to SQL injection, board takeover, user information disclosure, and remote code execution flaws. Detailed exploitation provided. Earlier versions are also possibly vulnerable.
ff2c0eb1e5ce104f2bbf34ecf0fad2a1b0def7e5f349f3033ec8cf1329d34db7Secunia Security Advisory - A vulnerability has been reported in phpMyFAQ, which can be exploited by malicious people to compromise a vulnerable system.
57d5a87a4d67e51c415c250e162cb20d5feb6141c40841d6132fb0f494c7e6a4Secunia Security Advisory - A vulnerability has been reported in phpMyFAQ, which can be exploited by malicious people to compromise a vulnerable system.
42f609ce3692d089d52b87fb28683f47030fd1269c93651ebcc2d508a9e10004Secunia Security Advisory - Sven Michels has reported a vulnerability in phpMyFaq, which can be exploited by malicious users to conduct SQL injection attacks.
5db99b76755b34847730826b0018ba4e0c959d572693b91627819b7cb196e0d4A flaw in phpMyFaq version 1.4.0 allows malicious users the ability to upload or delete arbitrary images.
a95f22c88cf675223d49ae295c041d7cc10be88f9073b173b71766fd0da99725Within phpMyFAQ an input validation problem exists which allows an attacker to include arbitrary local files. With known tricks to inject PHP code into log or session files this could lead to remote PHP code execution. Versions affected are 1.3.12 and below for the stable releases, and 1.4.0-alpha1 and below for the developer releases.
cc512101e9d54c9eba31343dacb2a44138d5ce10c2a326dca09787990a61a49c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed