pkg:Packagist/thorsten/phpMyFAQ
4 total CVEsMEDIUM4
✅ Check your installed version
All known vulnerabilities
- MEDIUM5.4CVE-2026-46365phpMyFAQ: Missing Authorization on Tag Deletion Allows Any Authenticated User to Delete Tagsfrom 0, < 4.1.2
- MEDIUM5.4CVE-2026-46363phpMyFAQ: Stored XSS in FAQ Question/Answer via Encode-Decode Bypass of removeAttributes() Sanitizationfrom 0, < 4.1.2
- MEDIUM5.4CVE-2026-46360phpMyFAQ: SVG Sanitizer Entity Decoding Depth Limit Bypass Leading to Stored XSSfrom 0, < 4.1.2
- MEDIUM4.3CVE-2026-45009phpMyFAQ: Ordinary Authenticated User Can Access Admin-Only API Endpoints Due to Insufficient Authorization Checkfrom 0, < 4.1.2