Description inc/PMF/Faq.php in phpMyFAQ before 2.9.7 has XSS in the question field. Remediation References CVE-2017-7579 Related Vulnerabilities WordPress Plugin WP Lead Management Cross-Site Scripting (3.0.0) Internet Information Services Other Vulnerability (CVE-2002-1694) TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-3628) WordPress Plugin JS MultiHotel Cross-Site Scripting (2.2.1) PHP Out-of-bounds Read Vulnerability (CVE-2020-7061) Severity Medium Classification CVE-2017-7579 CWE-707 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities