What the vulnerability does
01Description
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.1.
CVE-2023-5864
HIGH
CVE-2023-5864: Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
CVSS base score
7.4/10
CVSS vector
CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Key dates
02Disclosure timeline
October 31, 2023
CVE published
September 17, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-31697 Formatter Suite - Moderately critical - Cross site scripting - SA-CONTRIB-2025-026
CVE-2026-27016 LibreNMS has Stored XSS in Custom OID - unit parameter missing strip_tags()
CVE-2025-26896 WordPress PiwigoPress plugin <= 2.33 - Cross Site Scripting (XSS) vulnerability
CVE-2024-7453 FastAdmin Attachment Management Section 4 cross site scripting
CVE-2026-47972 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
