thorsten/phpmyfaq prior to 3.1.12 is vulnerable to stored cross-site scripting (XSS) because it fails to sanitize user input in the updatecategory parameter. This has been fixed in 3.1.12.
References
- https://nvd.nist.gov/vuln/detail/CVE-2023-1879
- https://github.com/thorsten/phpmyfaq/commit/0dc8e527c375007cd4b8dbf61f7167393a6f6e91
- https://huntr.dev/bounties/1dc7f818-c8ea-4f80-b000-31b48a426334
- https://github.com/thorsten/phpMyFAQ/commit/a2642195e9fcb9a6f151bfaa4ff20bf1b905da2e
- https://github.com/advisories/GHSA-m9qm-m5w5-9pgj