CVE-2023-5320
- Source
- https://cve.org/CVERecord?id=CVE-2023-5320
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-5320.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-5320
- Aliases
- Published
- 2023-09-30T00:00:42.559Z
- Modified
- 2026-04-10T05:06:51.489348Z
- Severity
-
- 9.0 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H CVSS Calculator
- Summary
- Cross-site Scripting (XSS) - DOM in thorsten/phpmyfaq
- Details
-
Cross-site Scripting (XSS) - DOM in GitHub repository thorsten/phpmyfaq prior to 3.1.18.
- Database specific
{ "cna_assigner": "@huntrdev", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/5xxx/CVE-2023-5320.json", "cwe_ids": [ "CWE-79" ] }- References
Affected packages
Git / github.com/thorsten/phpmyfaq
Affected ranges
- Type
- GIT
- Repo
- https://github.com/thorsten/phpmyfaq
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
2.*
2.10.0-alpha
2.6.0
2.6.0-RC
2.6.0-alpha
2.6.0-beta
2.6.1
2.6.2
2.6.3
2.6.4
2.6.5
2.6.6
2.6.7
2.7.0-RC
2.7.0-alpha
2.7.0-alpha2
2.7.0-beta
2.7.0-beta2
2.7.0-beta3
2.8.0
2.8.0-RC
2.8.0-RC2
2.8.0-RC3
2.8.0-RC4
2.8.0-alpha2
2.8.0-alpha3
2.8.0-beta
2.8.0-beta2
2.8.0-beta3
2.8.1
2.8.2
2.9.0
2.9.0-RC
2.9.0-RC2
2.9.0-RC3
2.9.0-RC4
2.9.0-alpha
2.9.0-alpha2
2.9.0-alpha3
2.9.0-alpha4
2.9.0-beta
2.9.0-beta2
3.*
3.0.0-alpha
3.0.0-alpha.2
3.0.0-alpha.3
3.0.0-alpha.4
3.0.0-beta
3.0.0-beta.2
3.0.0-beta.3
3.1.0
3.1.0-RC
3.1.0-alpha
3.1.0-alpha.2
3.1.0-alpha.3
3.1.0-beta
3.1.1
3.1.10
3.1.11
3.1.12
3.1.13
3.1.14
3.1.15
3.1.16
3.1.17
3.1.2
3.1.3
3.1.4
3.1.5
3.1.6
3.1.7
3.1.8
3.1.9