phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2017-15809 - Vulnerability Database

phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2017-15809

Medium
Reference: CVE-2017-15809
Title: phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

In phpMyFaq before 2.9.9 there is XSS in admin/tags.main.php via a crafted tag.