System	Score	Found at
epss	0.00157	https://api.first.org/data/v1/epss?cve=CVE-2024-28106
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-6p68-36m6-392r
cvssv3.1	4.3	https://github.com/thorsten/phpMyFAQ
generic_textual	MODERATE	https://github.com/thorsten/phpMyFAQ
cvssv3.1	4.3	https://github.com/thorsten/phpMyFAQ/commit/c94b3deadd87789389e1fad162bc3dd595c0e15a
generic_textual	MODERATE	https://github.com/thorsten/phpMyFAQ/commit/c94b3deadd87789389e1fad162bc3dd595c0e15a
ssvc	Track	https://github.com/thorsten/phpMyFAQ/commit/c94b3deadd87789389e1fad162bc3dd595c0e15a
cvssv3.1	4.3	https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-6p68-36m6-392r
cvssv3.1_qr	MODERATE	https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-6p68-36m6-392r
generic_textual	MODERATE	https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-6p68-36m6-392r
ssvc	Track	https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-6p68-36m6-392r
cvssv3.1	4.3	https://nvd.nist.gov/vuln/detail/CVE-2024-28106
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2024-28106

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2024-28106
		https://github.com/thorsten/phpMyFAQ
c94b3deadd87789389e1fad162bc3dd595c0e15a		https://github.com/thorsten/phpMyFAQ/commit/c94b3deadd87789389e1fad162bc3dd595c0e15a
CVE-2024-28106		https://nvd.nist.gov/vuln/detail/CVE-2024-28106
GHSA-6p68-36m6-392r		https://github.com/advisories/GHSA-6p68-36m6-392r
GHSA-6p68-36m6-392r		https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-6p68-36m6-392r

No exploits are available.

Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L Found at https://github.com/thorsten/phpMyFAQ

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L Found at https://github.com/thorsten/phpMyFAQ/commit/c94b3deadd87789389e1fad162bc3dd595c0e15a

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

---

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T00:06:05Z/ Found at https://github.com/thorsten/phpMyFAQ/commit/c94b3deadd87789389e1fad162bc3dd595c0e15a

---

Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L Found at https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-6p68-36m6-392r

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

---

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T00:06:05Z/ Found at https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-6p68-36m6-392r

---

Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L Found at https://nvd.nist.gov/vuln/detail/CVE-2024-28106

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Percentile	0.36279
EPSS Score	0.00157
Published At	June 11, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-10T18:32:00.195933+00:00	Vulnrichment	Import	https://github.com/cisagov/vulnrichment/blob/develop/2024/28xxx/CVE-2024-28106.json	38.6.0