Skip to content

phpMyFAQ: Missing Password Reset Token Allows Account Takeover via Username/Email Enumeration

High severity GitHub Reviewed Published May 14, 2026 in thorsten/phpMyFAQ • Updated May 31, 2026

No open alerts for this advisory

Give feedback on Dependabot alerts