CVE-2023-1761

CVSS V2 None CVSS V3 None

Description

Cross-site Scripting in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

Overview

CVE ID
CVE-2023-1761

Assigner
security@huntr.dev

Vulnerability Status
Modified

Published Version
2023-03-31T02:15:06

Last Modified Date
2023-04-26T16:15:09

Weakness Enumerations

CWE	URL
CWE-79	http://cwe.mitre.org/data/definitions/79.html
CWE-94	http://cwe.mitre.org/data/definitions/94.html

CPE Configuration (Product)

CPE	Vulnerable	Operator	Version Start	Version End
cpe:2.3:a:phpmyfaq:phpmyfaq::::::::	1	OR		3.1.12

References

Reference URL	Reference Tags
https://github.com/thorsten/phpmyfaq/commit/128ef85f8e3ab7869d3107aa4d0b6867b53391d7	Patch
https://huntr.dev/bounties/24c0a65f-0751-4ff8-af63-4b325ac8879f	Exploit Patch

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-1761
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1761

History

Created	Old Value	New Value	Data Type	Notes
2023-04-17 03:57:04				Added to TrackCVE
2023-04-17 03:57:06			Weakness Enumeration	new
2023-04-17 05:08:33			CVSS V3 information	new
2023-04-26 17:02:11		2023-04-26T16:15:09	CVE Modified Date	updated
2023-04-26 17:02:11	Analyzed	Modified	Vulnerability Status	updated
2023-04-26 17:02:13	Code Injection in GitHub repository thorsten/phpmyfaq prior to 3.1.12.	Cross-site Scripting in GitHub repository thorsten/phpmyfaq prior to 3.1.12.	Description	updated
2023-04-26 17:02:17			CVSS V3 information	new