CVE-2023-5863

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Oct 31, 2023

Updated: Nov 8, 2023

CWE ID 79

Summary

CVE-2023-5863 is a Cross-site Scripting (XSS) vulnerability affecting the GitHub repository thorsten/phpmyfaq before version 3.2.2. Malicious scripts can be injected into the application through user input, posing a threat to unsuspecting users who view the affected webpages. Successful exploitation of this vulnerability could lead to data theft, unauthorized account access, or even malware installation. Users are strongly advised to update their phpmyfaq installation to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Phpmyfaq

Affected Vendors

Phpmyfaq

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tNiJEj
https://www.cve.org/CVERecord?id=CVE-2023-5863
https://nvd.nist.gov/vuln/detail/CVE-2023-5863

Back to Vulnerability Database