6.5

CVE-2026-24420

Exploit

EPSS 0.02%
Veröffentlicht 24.01.2026 01:57:28
Zuletzt bearbeitet 28.01.2026 18:25:46
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

phpMyFAQ: Attachment download allowed without dlattachment right (broken access control)

phpMyFAQ is an open source FAQ web application. Versions 4.0.16 and below allow an authenticated user without the dlattachment permission to download FAQ attachments due to a incomprehensive permissions check. The presence of a right key is improperly validated as proof of authorization in attachment.php. Additionally, the group and user permission logic contains a flawed conditional expression that may allow unauthorized access. This issue has been fixed in version

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Phpmyfaq ≫ Phpmyfaq Version < 4.0.17

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.028

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-7p9h-m7m8-vhhv

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2026-24420

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-24420

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-24420

EUVD