Package impact

Packagist / phpMyFAQ

CVE	Severity	CVSS	Risk	Flags	OS	Vendor	Published	Description
CVE-2026-46367	high	7.6	7.6				13d ago	phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in Utils::parseUrl() that allows authenticated users to inject JavaScript via malformed URLs in comments. Attackers can craf…