thorsten/phpmyfaq
Packagist103 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting thorsten/phpmyfaqpage 2 of 3
- CVE-2023-2550MEDIUMCVSS 4.8EG 4.8✓ Fixed in 3.1.132023-05-05
vulnerable: 2.10.0-alpha ... 3.1.9 (104 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13.
- CVE-2023-2752MEDIUMCVSS 5.4EG 5.4✓ Fixed in 3.2.0-beta2023-05-17
vulnerable: 2.10.0-alpha ... 3.2.0-alpha (111 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.
- CVE-2023-2753MEDIUMCVSS 5.4EG 5.4✓ Fixed in 3.2.0-beta2023-05-17
vulnerable: 2.10.0-alpha ... 3.2.0-alpha (111 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.
- CVE-2023-2998MEDIUMCVSS 6.1EG 6.1✓ Fixed in 3.1.142023-05-31
vulnerable: 2.10.0-alpha ... 3.1.9 (105 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14.
- CVE-2023-2999MEDIUMCVSS 6.1EG 6.1✓ Fixed in 3.1.142023-05-31
vulnerable: 2.10.0-alpha ... 3.1.9 (105 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14.
- CVE-2023-3469MEDIUMCVSS 4.8EG 4.8✓ Fixed in 3.2.0-beta.22023-06-30
vulnerable: 2.10.0-alpha ... 3.2.0-beta (112 versions)
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.2.
- CVE-2023-4006CRITICALCVSS 9.8EG 9.8✓ Fixed in 3.1.162023-07-31
vulnerable: 2.10.0-alpha ... 3.1.9 (107 versions)
Improper Neutralization of Formula Elements in a CSV File in GitHub repository thorsten/phpmyfaq prior to 3.1.16.
- CVE-2023-4007MEDIUMCVSS 5.4EG 5.4✓ Fixed in 3.1.162023-07-31
vulnerable: 2.10.0-alpha ... 3.1.9 (107 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.16.
- CVE-2023-5227CRITICALCVSS 9.8EG 9.8✓ Fixed in 3.1.182023-09-30
vulnerable: 2.10.0-alpha ... 3.1.9 (109 versions)
Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
- CVE-2023-5316MEDIUMCVSS 6.1EG 6.1✓ Fixed in 3.1.182023-09-30
vulnerable: 2.10.0-alpha ... 3.1.9 (109 versions)
Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18.
- CVE-2023-5317MEDIUMCVSS 5.4EG 5.4✓ Fixed in 3.1.182023-09-30
vulnerable: 2.10.0-alpha ... 3.1.9 (109 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.18.
- CVE-2023-5319MEDIUMCVSS 5.4EG 5.4✓ Fixed in 3.1.182023-09-30
vulnerable: 2.10.0-alpha ... 3.1.9 (109 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.18.
- CVE-2023-5320MEDIUMCVSS 6.1EG 6.1✓ Fixed in 3.1.182023-09-30
vulnerable: 2.10.0-alpha ... 3.1.9 (109 versions)
Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18.
- CVE-2023-53929HIGHCVSS 8.8EG 8.82025-12-17
vulnerable: 2.10.0-alpha ... 3.1.9 (104 versions)
phpMyFAQ 3.1.12 contains a CSV injection vulnerability that allows authenticated users to inject malicious formulas into their profile names. Attackers can modify their user profile name with a payload like 'calc|a!z|' to trigger code exec…
- CVE-2023-5863MEDIUMCVSS 6.1EG 6.1✓ Fixed in 3.2.22023-10-31
vulnerable: 2.10.0-alpha ... 3.2.1 (118 versions)
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.2.
- CVE-2023-5864MEDIUMCVSS 4.8EG 4.8✓ Fixed in 3.2.12023-10-31
vulnerable: 2.10.0-alpha ... 3.2.0-beta.2 (117 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.1.
- CVE-2023-5865CRITICALCVSS 9.8EG 9.8✓ Fixed in 3.2.22023-10-31
vulnerable: 2.10.0-alpha ... 3.2.1 (118 versions)
Insufficient Session Expiration in GitHub repository thorsten/phpmyfaq prior to 3.2.2.
- CVE-2023-5866MEDIUMCVSS 5.7EG 5.7✓ Fixed in 3.2.12023-10-31
vulnerable: 2.10.0-alpha ... 3.2.0-beta.2 (117 versions)
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.2.1.
- CVE-2023-5867MEDIUMCVSS 5.4EG 5.4✓ Fixed in 3.2.22023-10-31
vulnerable: 2.10.0-alpha ... 3.2.1 (118 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.2.
- CVE-2023-6889MEDIUMCVSS 5.4EG 5.4✓ Fixed in 3.1.172023-12-16
vulnerable: 2.10.0-alpha ... 3.1.9 (108 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.17.
- CVE-2023-6890MEDIUMCVSS 5.4EG 5.4✓ Fixed in 3.1.172023-12-16
vulnerable: 2.10.0-alpha ... 3.1.9 (108 versions)
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.17.
- CVE-2024-54141HIGHCVSS 8.6EG 8.6✓ Fixed in 4.0.02024-12-06
vulnerable: 2.10.0-alpha ... 4.0.0-beta.2 (138 versions)
phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. Prior to 4.0.0, phpMyFAQ exposes the database (ie postgreSQL) server's credential when connection to DB fails. This vulnerability is fix…
- CVE-2024-55889MEDIUMCVSS 4.9EG 4.9✓ Fixed in 3.2.102024-12-13
vulnerable: 2.10.0-alpha ... 3.2.9 (126 versions)
phpMyFAQ is an open source FAQ web application. Prior to version 3.2.10, a vulnerability exists in the FAQ Record component where a privileged attacker can trigger a file download on a victim's machine upon page visit by embedding it in an…
- CVE-2024-56199MEDIUMCVSS 5.2EG 5.22025-01-02
vulnerable: 3.2.10 ... 4.0.1 (14 versions)
phpMyFAQ is an open source FAQ web application. Starting no later than version 3.2.10 and prior to version 4.0.2, an attacker can inject malicious HTML content into the FAQ editor at `http[:]//localhost/admin/index[.]php?action=editentry`,…
- CVE-2025-59943HIGHCVSS 8.1EG 8.1✓ Fixed in 4.0.132025-10-03
vulnerable: 4.0.10 ... 4.0.9 (6 versions)
phpMyFAQ is an open source FAQ web application. Versions 4.0-nightly-2025-10-03 and below do not enforce uniqueness of email addresses during user registration. This allows multiple distinct accounts to be created with the same email. Beca…
- CVE-2025-62519HIGHCVSS 7.2EG 7.2✓ Fixed in 4.0.142025-11-17
vulnerable: 2.10.0-alpha ... 4.0.9 (152 versions)
phpMyFAQ is an open source FAQ web application. Prior to version 4.0.14, an authenticated SQL injection vulnerability in the main configuration update functionality of phpMyFAQ allows a privileged user with 'Configuration Edit' permissions…
- CVE-2025-68951MEDIUMCVSS 5.4EG 5.4✓ Fixed in 4.0.162025-12-29
vulnerable: 4.0.14, 4.0.15
phpMyFAQ is an open source FAQ web application. Versions 4.0.14 and 4.0.15 have a stored cross-site scripting (XSS) vulnerability that allows an attacker to execute arbitrary JavaScript in an administrator’s browser by registering a user…
- CVE-2025-69200HIGHCVSS 7.5EG 7.52025-12-29
vulnerable: 4.1.0-alpha, 4.1.0-alpha.2, 4.1.0-alpha.3, 4.1.0-beta, 4.1.0-beta.2
phpMyFAQ is an open source FAQ web application. In versions prior to 4.0.16, an unauthenticated remote attacker can trigger generation of a configuration backup ZIP via `POST /api/setup/backup` and then download the generated ZIP from a we…
- CVE-2026-24420MEDIUMCVSS 6.5EG 6.5✓ Fixed in 4.0.172026-01-24
vulnerable: 2.10.0-alpha ... 4.0.9 (155 versions)
phpMyFAQ is an open source FAQ web application. Versions 4.0.16 and below allow an authenticated user without the dlattachment permission to download FAQ attachments due to a incomprehensive permissions check. The presence of a right key i…
- CVE-2026-24421MEDIUMCVSS 6.5EG 6.5✓ Fixed in 4.0.172026-01-24
vulnerable: 2.10.0-alpha ... 4.0.9 (155 versions)
phpMyFAQ is an open source FAQ web application. Versions 4.0.16 and below have flawed authorization logic which exposes the /api/setup/backup endpoint to any authenticated user despite their permissions. SetupController.php uses userIsAuth…
- CVE-2026-24422MEDIUMCVSS 5.3EG 5.3✓ Fixed in 4.0.172026-01-24
vulnerable: 2.10.0-alpha ... 4.0.9 (155 versions)
phpMyFAQ is an open source FAQ web application. In versions 4.0.16 and below, multiple public API endpoints improperly expose sensitive user information due to insufficient access controls. The OpenQuestionController::list() endpoint calls…
- CVE-2026-32629MEDIUMCVSS 6.1EG 6.1✓ Fixed in 4.1.12026-04-02
vulnerable: 2.10.0-alpha ... 4.1.0-beta.2 (169 versions)
phpMyFAQ is an open source FAQ web application. Prior to version 4.1.1, an unauthenticated attacker can submit a guest FAQ with an email address that is syntactically valid per RFC 5321 (quoted local part) yet contains raw HTML — for exa…
- CVE-2026-34973MEDIUMCVSS 5.3EG 5.3✓ Fixed in 4.1.12026-04-02
vulnerable: 2.10.0-alpha ... 4.1.0-beta.2 (169 versions)
phpMyFAQ is an open source FAQ web application. Prior to version 4.1.1, the searchCustomPages() method in phpmyfaq/src/phpMyFAQ/Search.php uses real_escape_string() (via escape()) to sanitize the search term before embedding it in LIKE cla…
- CVE-2026-34974MEDIUMCVSS 5.4EG 5.4✓ Fixed in 4.1.12026-04-02
vulnerable: 2.10.0-alpha ... 4.1.0-beta.2 (169 versions)
phpMyFAQ is an open source FAQ web application. Prior to version 4.1.1, the regex-based SVG sanitizer in phpMyFAQ (SvgSanitizer.php) can be bypassed using HTML entity encoding in javascript: URLs within SVG <a href> attributes. Any user wi…
- CVE-2026-35671HIGHCVSS 8.8EG 8.8✓ Fixed in 4.1.32026-05-20
vulnerable: 2.10.0-alpha ... 4.1.2 (171 versions)
phpMyFAQ before 4.1.3 contains an insecure direct object reference vulnerability in the admin API user password endpoint that allows authenticated administrators to change any user's password without authorization verification. An attacker…
- CVE-2026-35672HIGHCVSS 7.5EG 7.5✓ Fixed in 4.1.32026-05-20
vulnerable: 2.10.0-alpha ... 4.1.2 (171 versions)
phpMyFAQ before 4.1.3 contains an authentication bypass vulnerability in API v4.0 where the default empty api.apiClientToken allows unauthenticated users to create and modify FAQ entries. Attackers can send an empty x-pmf-token header to b…
- CVE-2026-35675HIGHCVSS 8.2EG 8.2✓ Fixed in 4.1.32026-05-20
vulnerable: 2.10.0-alpha ... 4.1.2 (171 versions)
phpMyFAQ before 4.1.3 contains an authentication bypass vulnerability in the password reset endpoint that allows unauthenticated attackers to reset any user account password without token verification or email confirmation. Attackers can e…
- CVE-2026-35676HIGHCVSS 8.2EG 8.2✓ Fixed in 4.1.32026-05-20
vulnerable: 2.10.0-alpha ... 4.1.2 (171 versions)
phpMyFAQ before 4.1.3 contains an unauthenticated password reset vulnerability in the user password update API endpoint that allows attackers to change account passwords without token validation. Attackers can enumerate valid username and …
- CVE-2026-45007MEDIUMCVSS 4.3EG 4.3✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains missing permission checks in ConfigurationTabController.php where 12 endpoints use userIsAuthenticated() instead of userHasPermission(CONFIGURATION_EDIT). Any authenticated user can enumerate system configura…
- CVE-2026-45008MEDIUMCVSS 6.5EG 6.5✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains a path traversal vulnerability in Client::deleteClientFolder that allows admins with INSTANCE_DELETE permission to delete arbitrary directories. Attackers can submit traversal sequences like https://../../../…
- CVE-2026-45009MEDIUMCVSS 4.3EG 4.3✓ Fixed in 4.1.22026-05-15
vulnerable: 4.1.1
phpMyFAQ before 4.1.2 contains an insufficient authorization vulnerability in admin-api routes that allows authenticated ordinary users to access administrative endpoints by only checking login status instead of verifying backend privilege…
- CVE-2026-45010CRITICALCVSS 9.1EG 9.1✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains an improper restriction of excessive authentication attempts vulnerability in the /admin/check endpoint, which accepts arbitrary user-id parameters without session binding or rate limiting. Unauthenticated at…
- CVE-2026-46359HIGHCVSS 7.5EG 7.5✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains a sql injection vulnerability in CurrentUser::setTokenData that allows authenticated attackers to execute arbitrary SQL by injecting malicious OAuth token claims. Attackers with Azure AD accounts containing S…
- CVE-2026-46360MEDIUMCVSS 5.4EG 5.4✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in SvgSanitizer::decodeAllEntities() that limits recursive entity decoding to 5 iterations, allowing attackers to bypass sanitization. Authenticated users with FAQ_…
- CVE-2026-46361MEDIUMCVSS 6.9EG 6.9✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in search.twig where result.question and result.answerPreview are rendered with the raw filter, disabling autoescape protection. Attackers with FAQ editor privilege…
- CVE-2026-46362MEDIUMCVSS 6.5EG 6.5✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains an authorization bypass vulnerability in AbstractAdministrationController::userHasPermission() that fails to terminate execution after sending a forbidden response. Attackers can access all permission-protect…
- CVE-2026-46363MEDIUMCVSS 5.4EG 5.4✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in FAQ creation and update endpoints that bypass sanitization through encode-decode cycles. The vulnerability allows authenticated attackers with FAQ_ADD permission…
- CVE-2026-46364CRITICALCVSS 9.8EG 9.8✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains an unauthenticated SQL injection vulnerability in BuiltinCaptcha::garbageCollector() and BuiltinCaptcha::saveCaptcha() methods that interpolate unsanitized User-Agent headers into DELETE and INSERT queries. U…
- CVE-2026-46366HIGHCVSS 7.5EG 7.5✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains an information disclosure vulnerability in the getIdFromSolutionId() method that lacks permission filtering, allowing unauthenticated attackers to enumerate restricted FAQ entries and read their titles via th…
- CVE-2026-46367HIGHCVSS 7.6EG 7.6✓ Fixed in 4.1.22026-05-15
vulnerable: 2.10.0-alpha ... 4.1.1 (170 versions)
phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in Utils::parseUrl() that allows authenticated users to inject JavaScript via malformed URLs in comments. Attackers can craft URLs with unescaped quotes to inject e…
Check whether thorsten/phpmyfaq is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for thorsten/phpmyfaq CVEs against the assets you own.
Start Free Scan →