Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-3668) CVE-2014-3668 CWE-119 CWE-119 Medium PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-3670) CVE-2014-3670 CWE-119 CWE-119 Medium PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-4049) CVE-2014-4049 CWE-119 CWE-119 Medium PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-9652) CVE-2014-9652 CWE-119 CWE-119 Medium PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-9709) CVE-2014-9709 CWE-119 CWE-119 Medium PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-2783) CVE-2015-2783 CWE-119 CWE-119 Medium PHP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2013-1824) CVE-2013-1824 CWE-611 CWE-611 Medium PHP Inadequate Encryption Strength Vulnerability (CVE-2020-7069) CVE-2020-7069 CWE-326 CWE-326 Medium PHP Incorrect Conversion between Numeric Types Vulnerability (CVE-2018-5711) CVE-2018-5711 CWE-681 CWE-681 Medium PHPinfo pages CWE-200 CWE-200 Medium PHP Insufficient Verification of Data Authenticity Vulnerability (CVE-2024-5458) CVE-2024-5458 CWE-345 CWE-345 Medium PHP Integer Overflow or Wraparound Vulnerability (CVE-2015-2305) CVE-2015-2305 CWE-190 CWE-190 Medium PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-6207) CVE-2016-6207 CWE-190 CWE-190 Medium PHP Integer Overflow or Wraparound Vulnerability (CVE-2019-11048) CVE-2019-11048 CWE-190 CWE-190 Medium phpList Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-2916) CVE-2014-2916 CWE-352 CWE-352 Medium phpList CVE-2023-27576 Vulnerability (CVE-2023-27576) CVE-2023-27576 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2741) CVE-2012-2741 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4246) CVE-2012-4246 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4247) CVE-2012-4247 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-20033) CVE-2017-20033 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-20034) CVE-2017-20034 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-20035) CVE-2017-20035 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-20036) CVE-2017-20036 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-12639) CVE-2020-12639 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13827) CVE-2020-13827 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15073) CVE-2020-15073 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-22251) CVE-2020-22251 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23190) CVE-2020-23190 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23192) CVE-2020-23192 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23194) CVE-2020-23194 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23207) CVE-2020-23207 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23208) CVE-2020-23208 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23209) CVE-2020-23209 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23214) CVE-2020-23214 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23217) CVE-2020-23217 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-36398) CVE-2020-36398 CWE-707 CWE-707 Medium phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-36399) CVE-2020-36399 CWE-707 CWE-707 Medium phpList Other Vulnerability (CVE-2006-5524) CVE-2006-5524 Medium PHP Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2022-31628) CVE-2022-31628 CWE-835 CWE-835 Medium PHP mail function ASCII control character header spoofing vulnerability CVE-2002-0986 CWE-20 CWE-20 Medium PHP multipart/form-data denial of service CVE-2009-4017 CWE-400 CWE-400 Medium phpMyFAQ 7PK - Security Features Vulnerability (CVE-2014-6050) CVE-2014-6050 Medium phpMyFAQ Business Logic Errors Vulnerability (CVE-2023-1887) CVE-2023-1887 Medium phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-0813) CVE-2014-0813 CWE-352 CWE-352 Medium phpMyFAQ CVE-2007-1032 Vulnerability (CVE-2007-1032) CVE-2007-1032 Medium phpMyFAQ Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3783) CVE-2011-3783 CWE-200 CWE-200 Medium phpMyFAQ Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6048) CVE-2014-6048 CWE-200 CWE-200 Medium phpMyFAQ Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) Vulnerability (CVE-2023-1758) CVE-2023-1758 CWE-75 CWE-75 Medium phpMyFAQ Improper Access Control Vulnerability (CVE-2023-1883) CVE-2023-1883 CWE-284 CWE-284 Medium phpMyFAQ Improper Access Control Vulnerability (CVE-2024-22202) CVE-2024-22202 CWE-284 CWE-284 Medium phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-0792) CVE-2023-0792 CWE-94 CWE-94 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2005-3047) CVE-2005-3047 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4040) CVE-2009-4040 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4780) CVE-2009-4780 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-4821) CVE-2010-4821 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-0814) CVE-2014-0814 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7579) CVE-2017-7579 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14618) CVE-2017-14618 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14619) CVE-2017-14619 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-15727) CVE-2017-15727 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-15728) CVE-2017-15728 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-15809) CVE-2017-15809 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-3765) CVE-2022-3765 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-3766) CVE-2022-3766 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-4407) CVE-2022-4407 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-4408) CVE-2022-4408 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0306) CVE-2023-0306 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0308) CVE-2023-0308 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0309) CVE-2023-0309 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0310) CVE-2023-0310 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0312) CVE-2023-0312 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0313) CVE-2023-0313 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0314) CVE-2023-0314 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0786) CVE-2023-0786 CWE-707 CWE-707 Medium phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0787) CVE-2023-0787 CWE-707 CWE-707 Medium 1...74757677...99 75 / 99
