CVE-2023-5227: Unrestricted Upload of File with Dangerous Type

September 30, 2023 (updated October 2, 2023)

Unrestricted Upload of File with Dangerous Type in GitHub repository thorsten/phpmyfaq prior to 3.1.8.

References

github.com/advisories/GHSA-qcjg-hvg6-hxcp
github.com/thorsten/phpmyfaq/commit/abf52487422ce47195c8a80bd904a7af39f60297
huntr.dev/bounties/a335c013-db75-4120-872c-42059c7100e8
nvd.nist.gov/vuln/detail/CVE-2023-5227

Detect and mitigate CVE-2023-5227 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →