CVE-2023-1758: Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)

April 5, 2023

Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

References

github.com/advisories/GHSA-3j93-7rf7-p7m6
github.com/thorsten/phpmyfaq/commit/f3380f46c464d1bc6f3ded29213c79be0de8fc57
huntr.dev/bounties/0854328e-eb00-41a3-9573-8da8f00e369c
nvd.nist.gov/vuln/detail/CVE-2023-1758

Detect and mitigate CVE-2023-1758 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →