Vulnerability Information Vulnerability Title: Multiple Cross Site Scripting vulnerabilities in phpMyFAQ Affected Versions: phpMyFAQ (all versions <= phpMyFAQ 1.5.3) CVE ID: CVE-2005-3734 CWE ID: CWE-79 CVSS Score: 4.3/10 Release Date: 2005-11-19 Risk Level: Low Overview phpMyFAQ is a multilingual, fully database-driven FAQ system. Versions 1.5.3 and earlier contain multiple persistent cross-site scripting vulnerabilities. Solution Upgrade to phpMyFAQ 1.5.4 or later. Download Link: http://www.phpmyfaq.de/download.php More Details http://www.trapkit.de/advisories/DKADV2005-11-004.txt Risk Level Metrics CVSS Base Score: 4.3/10 Impact Subscore: 2.9/10 - Confidentiality Impact: None - Integrity Impact: Partial Exploitability Subscore: 8.6/10 - Attack Complexity: Medium - Authentication: Not Required - Availability Impact: None Additionally, the screenshot also shows the original vulnerability report, the signature of the publisher Tobias Klein, and other elements such as voting buttons (like/dislike) for the information.