Description

Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2014-0814

Related Vulnerabilities

OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2021-23839)

WordPress Plugin WordPress WP-Advanced-Search Remote Code Execution (3.3.3)

WordPress Plugin Advanced AJAX Product Filters Security Bypass (1.3.6.1)

WordPress Plugin Elementor Website Builder Arbitrary File Upload (3.18.1)

WordPress 'swfupload.swf' Cross-Site Scripting Vulnerability (2.5 - 3.3.1)

Severity

Medium

Classification

CVE-2014-0814 CWE-707

Tags

Missing Update Known Vulnerabilities