Vulnerabilidades en thorsten
115 resultadosCVE-2022-3766HIGHCross-site Scripting (XSS) - Reflected in thorsten/phpmyfaqEPSS 5.7%CVE-2022-4407CRITICALCross-site Scripting (XSS) - Reflected in thorsten/phpmyfaqEPSS 4.4%CVE-2024-55889MEDIUMphpMyFAQ Vulnerable to Unintended File Download Triggered by Embedded FramesEPSS 2.1%CVE-2025-69200HIGHphpMyFAQ has unauthenticated config backup download via /api/setup/backupEPSS 2.0%CVE-2026-24421MEDIUMphpMyFAQ missing authorization exposes /api/setup/backup to any authenticated userEPSS 1.7%CVE-2026-46364CRITICALphpMyFAQ - SQL Injection via User-Agent Header in BuiltinCaptchaEPSS 1.7%CVE-2023-0789HIGHCommand Injection in thorsten/phpmyfaqEPSS 1.7%CVE-2023-1880HIGHCross-site Scripting (XSS) - Reflected in thorsten/phpmyfaqEPSS 1.6%CVE-2024-28105HIGHphpMyFAQ's File Upload Bypass at Category Image Leads to RCEEPSS 1.5%CVE-2024-27299HIGHphpMyFAQ SQL Injection at "Save News"EPSS 1.2%CVE-2022-3754HIGHWeak Password Requirements in thorsten/phpmyfaqEPSS 1.1%CVE-2023-5863HIGHCross-site Scripting (XSS) - Reflected in thorsten/phpmyfaqEPSS 1.1%CVE-2024-28107HIGHphpMyFAQ SQL injections at insertentry & saveentryEPSS 1.0%CVE-2023-0311MEDIUMImproper Authentication in thorsten/phpmyfaqEPSS 0.9%CVE-2022-3608HIGHCross-site Scripting (XSS) - Stored in thorsten/phpmyfaqEPSS 0.9%CVE-2023-0788HIGH Code Injection in thorsten/phpmyfaqEPSS 0.9%CVE-2024-24574MEDIUMphpMyFAQ vulnerable to stored XSS on attachments filenameEPSS 0.9%CVE-2023-1762HIGHImproper Privilege Management in thorsten/phpmyfaqEPSS 0.9%CVE-2023-1886HIGHAuthentication Bypass by Capture-replay in thorsten/phpmyfaqEPSS 0.9%CVE-2024-22208MEDIUMphpMyFAQ sharing FAQ functionality can easily be abused for phishing purposesEPSS 0.7%