CVE-2026-46363 | thorsten phpMyFAQ up to 4.1.1 FAQ Endpoint cross site scripting (GHSA-f5p7-2c9q-8896)

Inserito da Angelo Barbosa | Mag 16, 2026 | CVE

A vulnerability classified as problematic was found in thorsten phpMyFAQ up to 4.1.1. This impacts an unknown function of the component FAQ Endpoint. Executing a manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2026-46363. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2026-46363 | thorsten phpMyFAQ up to 4.1.1 FAQ Endpoint cross site scripting (GHSA-f5p7-2c9q-8896)

Post correlati

CVE-2023-29125 | Enel X JuiceBox Pro 3.0 22kW Cellular up to 2.1.1.0_JB3VU096A Service Port 7700 heap-based overflow

CVE-2024-32113 | Apache OFBiz up to 18.12.12 path traversal

CVE-2024-13142 | ZeroWdd studentmanager 1.0 RoleController. java submitAddRole name cross site scripting

CVE-2023-50714 | yii2-authclient prior 2.2.15 Oauth2 PKCE improper authentication