CVE-2017-15728

MEDIUM

Phpmyfaq < 2.9.8 - XSS

Title source: rule

In phpMyFAQ before 2.9.9, there is Stored Cross-site Scripting (XSS) via metaDescription or metaKeywords.

Core 1

Core References

Third Party Advisory x_refsource_confirm

CVSS v3 4.8

EPSS 0.0024

EPSS Percentile 46.4%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

CWE

CWE-79

Status published

Products (1)

phpmyfaq/phpmyfaq < 2.9.8

Published Oct 22, 2017

Tracked Since Feb 18, 2026