GHSA-q9vm-29ph-p7mp

GitHub Security Advisory

phpMyFAQ Stored Cross-site Scripting vulnerability

✓ GitHub Reviewed HIGH Has CVE

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.16.

Packagist thorsten/phpmyfaq

Affected versions: 0 (fixed in 3.1.16)

CVE-2023-4007

GHSA ID

GHSA-q9vm-29ph-p7mp

Published

July 31, 2023 3:30 AM

Last Modified

July 31, 2023 10:02 PM

CVSS Score

7.5 /10

Primary Ecosystem

Packagist

Primary Package

thorsten/phpmyfaq

GitHub Reviewed

✓ Yes

Last updated: September 16, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.