exploitDog

CVE-2022-3766

Опубликовано: 31 окт. 2022

Источник: nvd

CVSS3: 7.3

CVSS3: 6.1

EPSS Низкий

Описание

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8.

Ссылки

https://github.com/thorsten/phpmyfaq/commit/c7904f2236c6c0dd64c2226b90c30af0f7e5a72d
Patch
Third Party Advisory
https://huntr.dev/bounties/d9666520-4ff5-43bb-aacf-50c8e5570983
Exploit
Issue Tracking
Patch
Third Party Advisory
https://github.com/thorsten/phpmyfaq/commit/c7904f2236c6c0dd64c2226b90c30af0f7e5a72d
Patch
Third Party Advisory
https://huntr.dev/bounties/d9666520-4ff5-43bb-aacf-50c8e5570983
Exploit
Issue Tracking
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpmyfaq:phpmyfaq:*:*:*:*:*:*:*:*

Версия до 3.1.8 (исключая)

EPSS

Процентиль: 89%

0.04657

Низкий

7.3 High

CVSS3

6.1 Medium

CVSS3

Дефекты

CWE-79

CWE-79

Связанные уязвимости

GHSA-mg5h-rhjq-6v84

CVSS3: 6.1

github

больше 3 лет назад

phpMyFAQ vulnerable to reflected Cross-site Scripting

EPSS

Процентиль: 89%

0.04657

Низкий

7.3 High

CVSS3

6.1 Medium

CVSS3

Дефекты

CWE-79

CWE-79