thorsten/phpmyfaq Security Advisories for 3.2.0-RC.4 (7)
-
[MEDIUM] thorsten/phpmyfaq Unintended File Download Triggered by Embedded Frames
PKSA-nm7m-ddfs-x1rd CVE-2024-55889 GHSA-m3r7-8gw7-qwvc
Affected version: <3.2.10
Reported by:
GitHub -
[HIGH] phpMyFAQ Generates an Error Message Containing Sensitive Information if database server is not available
PKSA-zk9c-crx1-g563 CVE-2024-54141 GHSA-vrjr-p3xp-xx2x
Affected version: <4.0.0
Reported by:
GitHub -
[MEDIUM] Cross-site Scripting (XSS) in thorsten/phpmyfaq
PKSA-3zxr-6q1g-y9pc CVE-2023-5867 GHSA-prrv-r843-4p75
Affected version: <3.2.2
Reported by:
GitHub -
[MEDIUM] Sensitive cookie in HTTPS session without 'Secure' attribute in thorsten/phpmyfaq
PKSA-234x-mfj9-vyxm CVE-2023-5866 GHSA-34w4-wrqp-j47g
Affected version: <3.2.1
Reported by:
GitHub -
[HIGH] Insufficient Session Expiration in thorsten/phpmyfaq
PKSA-mhmh-zvw7-ctt3 CVE-2023-5865 GHSA-f728-prhw-2g68
Affected version: <3.2.2
Reported by:
GitHub -
[HIGH] phpMyFAQ Cross-site Scripting vulnerability
PKSA-fwqb-wfgt-vhnq CVE-2023-5864 GHSA-g5hp-328h-jj98
Affected version: <3.2.1
Reported by:
GitHub -
[HIGH] phpMyFAQ Cross-site Scripting vulnerability
PKSA-fy6w-gxhz-b2mb CVE-2023-5863 GHSA-j4vj-w5rj-8grw
Affected version: <3.2.2
Reported by:
GitHub