Description In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag. Remediation References CVE-2017-15809 Related Vulnerabilities MySQL CVE-2024-21238 Vulnerability (CVE-2024-21238) WordPress Plugin Leaky Paywall Cross-Site Scripting (4.16.5) Envoy Proxy NULL Pointer Dereference Vulnerability (CVE-2021-28683) Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-22148) WordPress Plugin Toolset Types-Custom Post Types, Custom Fields and Taxonomies PHP Object Injection (1.5.7) Severity Medium Classification CVE-2017-15809 CWE-707 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities