B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News

CVE-2026-57995 - phpMyFAQ - Privilege Escalation via Missing Self-Rights Constraint in GroupController::updatePermissions

CVE ID :CVE-2026-57995 Published : June 30, 2026, 10:08 p.m. | 1 hour, 4 minutes ago Description :phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in GroupController::updatePermissions that allows GROUP_EDIT administrators to grant arbitrary rights to groups without...

Original-Artikel öffnen Zurück zur Übersicht