CVE-2026-35675

Sažetak

phpMyFAQ before 4.1.3 contains an authentication bypass vulnerability in the password reset endpoint that allows unauthenticated attackers to reset any user account password without token verification or email confirmation. Attackers can enumerate valid usernames, obtain plaintext passwords via email, and achieve complete account takeover including administrative access.

Reference

https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-w9xh-5f39-vq89
https://www.vulncheck.com/advisories/phpmyfaq-authentication-bypass-via-missing-password-reset-token-in-api-user-password-update
https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-w9xh-5f39-vq89

CVSS

Base:	8.2
Impact:	4.2
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
LOW	HIGH	NONE

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

Zadnje važnije ažuriranje

29-05-2026 - 14:16

Objavljeno

28-05-2026 - 16:16