Security: thorsten/phpMyFAQ
Security Advisories
View known security vulnerabilities and report new vulnerabilities privately to maintainers.
-
Unauthenticated SQL injection via User-Agent header in BuiltinCaptchaGHSA-289f-fq7w-6q2w published
Apr 28, 2026 by thorstenCritical -
Path traversal in Client::deleteClientFolder enables arbitrary directory deletion by non-super-admin adminsGHSA-gh9p-q46p-57g2 published
Apr 28, 2026 by thorstenModerate -
Unauthenticated FAQ permission bypass via getFaqBySolutionId fallback queryGHSA-99qv-g4x9-mgc3 published
Apr 28, 2026 by thorstenHigh -
SQL injection in CurrentUser::setTokenData via unescaped OAuth token fieldsGHSA-pm8c-3qq3-72w7 published
Apr 28, 2026 by thorstenHigh -
Unauthenticated 2FA brute-force via /admin/check accepting arbitrary user-idGHSA-9pq7-mfwh-xx2j published
Apr 28, 2026 by thorstenCritical -
Unauthenticated Password Reset Endpoint Allows User Enumeration and Forced Password Change Without Token ValidationGHSA-9qv9-8xv6-5p35 published
May 14, 2026 by thorstenHigh -
Ordinary Authenticated User Can Access Admin-Only API Endpoints Due to Insufficient Authorization Check in phpMyFAQGHSA-jrc5-w569-h7h5 published
Apr 28, 2026 by thorstenModerate -
Stored XSS via | raw Filter in search.twig — html_entity_decode(strip_tags()) Bypass in Search Result RenderingGHSA-pqh6-8fxf-jx22 published
Apr 28, 2026 by thorstenModerate -
Missing CONFIGURATION_EDIT Permission Check on 12 Admin API Configuration Tab Endpoints Allows Information Disclosure by Any Authenticated UserGHSA-rm98-82fr-mcfx published
Apr 28, 2026 by thorstenModerate -
SVG Sanitizer Entity Decoding Depth Limit Bypass Leading to Stored XSSGHSA-whqh-9pq5-c7r3 published
Apr 28, 2026 by thorstenModerate